Update your Apple devices

Yes, there was just an update (to 14.5). But security is a process, not a product. It needs to be constantly monitored and improved. Available for: iPhone 6s and later, iPad Pro (all models), iPad…

New 0-day on Microsoft Exchange…

Devcore team is still on the wave, this time they scooped up $200.000 (under the ZDI program) for another 0day exploit on Microsoft Exchange. This time there aren’t any patches available, but probably they will…

Microsoft Teams. Exploit worth $200.000

The screenshot “Attempt 1”, means that the exploit works very well and it took only one attempt to use it. It is possible to get a code execution on the victim’s computer. Investigator’s award goes…

Bug in OpenSSL – You can kill servers remotely (DoS)

OpenSSL project has just patched two vulnerabilities (marked with risk High). The CVE-2021-3449 vulnerability seems to be more important because it can be used in default configurations. As we can read here: An OpenSSL TLS…

Acer hit by ransomware attack

As you can see, the ransom is quite large (probably even the largest in history), and after the timeout it will jump higher. On the other hand, a discount of 20% is supposed to be…