Microsoft released patches for 112 unique common vulnerabilities and exposures (CVEs), 17 of which were considered critical.


Apple has patched the three zero-day vulnerabilities with latest release of iOS 14.2. Human Operated ransomware RansomeEXX's Operators developed new ELF executable to infect Linus based operating systems. 


Google has patched two new Chrome zero-day vulnerabilities currently being exploited that researchers say, if left unpatched, could allow hackers to compromise user devices.


Google has rolled out an update to its Chrome web browser that fixes five security flaws, including a vulnerability that is known to be actively exploited by attackers.


A Tennessee firm that provides health data management services has agreed to pay the United States Office for Civil Rights (OCR) $2.3m to settle charges related to a data breach. The healthcare industry is a known target for hackers and cyberthieves. 


Hospital patients have been warned that data that was on the Blackbaud systems affected by the cyber-attack may have included their name, date of birth, address, contact information, attending doctor, insurance provider, and medical service department.


According to security researchers, millions of WordPress sites are being probed in automated attacks looking to exploit a recently discovered plugin vulnerability. Wordfence, which produces a plugin for the platform, revealed news of the zero-day bug at the start of September.


A cyber attack has shut down virtual classes in a Los Angeles school district two weeks after the FBI issued a cybersecurity warning to schools offering online learning. 


Security researchers have discovered a new ransomware strain targeting macOS users.


A vulnerability in the Integrated Dell Remote Access Controller (iDRAC) that could allow cyber-criminals to gain full control of server operations has been detected.


A Florida Tax Collector's Office has blamed malware found on an employee's computer for a data breach that affected around 450,000 residents of Polk County. 


Researchers have once again spotted crooks using calendar invitations to mount phishing attacks. The Cofense Phishing Defense Center found the attack in enterprise email environments protected by Proofpoint and Microsoft, it announced last week.


The Tennessee city of Knoxville has been forced to shut down its computer network after falling victim to a ransomware attack. Cyber-criminals mounted their attack on the county seat of Knox County in the early hours of Thursday, June 11.


Bank of America Corporation has disclosed a data breach affecting clients who have applied for the Paycheck Protection Program (PPP).