More than 100 vulnerabilities were patched by Microsoft on “Patch Tuesday”, which falls on the second Tuesday of each month. Two of the patched vulnerabilities were zero-days, which means they’re being actively exploited. The patched zero-days are tracked as CVE-2022-26904, which is a Windows user profile elevation of privileges (EoP) vulnerability and CVE 2022-24541, which […]
Apple has patched kernel code execution vulnerabilities that could lead to spyware infections or jailbreaking of your device. iOS & iPads should be updated to version 15.4.1. For more information see Apple Bulletin HT213219, which is tracked as CVE-2022-22675. MacOS Monterey should be updated to 12.3.1. For more information, see Apple Bulletin HT213220, which is […]
As an update to our 3/28 blog post, Google has released the following Chrome updates: version 100.0.4896.60 for Windows, Mac & Linux. version 100.0.4896.58, for Android, which will available in the coming days on Google Play. version 100.0.4896.56, for iOS which is available now in the app store. version 101.0.4941.15 for the Dev Channel of Windows, […]
Users of Windows, Mac and Linux are advised to update Chrome to version 99.4844.84. This update addresses one zero-day security vulnerability, which is being actively exploited. This vulnerability is being tracked as CVE-2022-1096, and is a type of confusion vulnerability in the V8 JavaScript engine. To check which version of Chrome you’re running, you can […]
As you may know, Zelle is a commonly used payment service offered by many banks and credit unions. This service is often offered by default to customers. Due to the rapidity and irreversibility of Zelle payments, scammers are targeting customers with bogus text messages, like the following: Image courtesy of Krebs on Security How it […]
Please see the following Apple support article for more information on recent Apple security updates for all of your Apple devices, and devices running Windows 10 or later. We recommend that you update as soon as possible. Instructions for updating your devices: On your iPhone or iPad: Settings > General > Software Update On your […]
Multiple critical vulnerabilities in Mozilla Firefox and Firefox Extended Support Release (ESR), have been addressed in a recent update. These vulnerabilities allow for remote code execution (RCE) at the logged-in user’s level of access, and are currently being exploited “in the wild”. Users are advised to update Mozilla Firefox to 97.0.2 and Firefox ESR to […]
With the mounting geo-political tensions between Russia and Ukraine, and the threat of sanctions being imposed by the U.S., Governor Kathy Hochul has issued a statement warning New Yorkers to be mindful of possible Russian cyber attacks on their personal accounts. Additionally, Governor Hochul and Federal officials have called on businesses to prepare for potential […]
Aside from personal privacy concerns, both your personal data and NYU data has value and should be protected. Realize that there are hidden costs associated with freeware (free software), which may take the form of personal information collected about you, that can be analyzed and monetized by malicious actors, data brokers, researchers/product developers, businesses, […]
What is a LinkedIn Slink? A Slink is a Linkedin smart link, which consists of a “clean” Linkedin URL that when clicked, redirects you to another site. LinkedIn offers this redirect feature to customers who opt to market through LinkedIn, because Slinks provide businesses with the ability to track their ad campaigns. However, malicious actors […]