Microsoft addressed 72 vulnerabilities affecting its core products and underlying systems, including five actively exploited zero-days across various Windows components, the company said in its latest security update Tuesday. “This is now the eight consecutive Patch Tuesday on which Microsoft has published zero-day vulnerabilities without evaluating any of them as critical severity at time of…
Category: security patch
Android, Cybersecurity, Exploits, Global Security News, Google, Mobile, Mobile Security, security patch, Technology, vulnerabilities
Google addresses 1 actively exploited vulnerability in May’s Android security update
Google addressed 47 vulnerabilities affecting Android devices in its May security update, including an actively exploited software defect that was first disclosed in March. Google said the high-severity vulnerability, CVE-2025-27363, “may be under limited, targeted exploitation.” The out-of-bounds write defect in FreeType versions 2.13.0 and below may result in arbitrary code execution, Facebook said in…
Cybercrime, Cybersecurity, Exploits, Global Security News, Microsoft, Patch Tuesday, Ransomware, Research, security patch, Threats, vulnerabilities, zero days
Microsoft patches zero-day actively exploited in string of ransomware attacks
Microsoft addressed 126 vulnerabilities affecting its systems and core products, including a zero-day in the Windows Common Log File System (CLFS) that’s been actively exploited in a series of ransomware attacks, the company said in its latest security update Tuesday. A group Microsoft tracks as Storm-2460 has exploited CVE-2025-29824 to initiate ransomware attacks “against a…
Android, Cellebrite, Cybersecurity, Exploits, Global Security News, Google, Mobile, Mobile Security, security patch, Technology, Threats, vulnerabilities, zero days
Google addresses 2 actively exploited vulnerabilities in security update
Google addressed 62 vulnerabilities affecting Android devices in its April security update, including a pair of actively exploited software defects that were first disclosed in December. Google said the two vulnerabilities — CVE-2024-53197 and CVE-2024-53150 — “may be under limited, targeted exploitation.” The pair of flaws under active exploitation are high-severity and affect the Linux…
Apple, CVE, Cybersecurity, Exploits, Global Security News, iOS, iPadOS, macOS, Safari, security patch, Technology, zero days
Apple issues fixes for vulnerabilities in both old and new OS versions
Apple released security updates Monday to address software defects in the latest version of the company’s Safari browser and other applications across iOS, iPadOS and macOS. The security issues addressed across the latest versions of Apple’s most popular platforms include 62 vulnerabilities affecting iOS 18.4 and iPadOS 18.4, 131 vulnerabilities affecting macOS Sequoia 15.4 and…
Android, Cybersecurity, Exploits, Global Security News, Google, security patch, Technology, vulnerabilities
Android security update contains 2 actively exploited vulnerabilities
Google addressed 43 vulnerabilities affecting Android devices in its March security update, including a pair of software defects reportedly under active exploitation. Google said the two vulnerabilities — CVE-2024-43093 and CVE-2024-50302 — “may be under limited, targeted exploitation.” The most severe of the flaws under active exploitation, CVE-2024-43093, carries a CVSS score of 7.8 and…
Apple, Cybersecurity, Exploits, Global Security News, iOS, macOS, security patch, vulnerabilities
Apple’s latest patch closes zero-day affecting wide swath of products
Apple released software updates Monday, aimed at addressing multiple security vulnerabilities within its products, including a significant zero-day vulnerability. Tracked as CVE-2025-24085, the flaw is a use-after-free vulnerability in the company’s Core Media component, a framework that manages audio and video playback and is central to many of Apple’s multimedia applications. The vulnerability poses a…