Security News > 2021

For the third time this year, Google has shipped an urgent fix to block in-the-wild zero-day attacks hitting its flagship Chrome browser. The latest emergency Chrome patch, available for Windows, MacOS and Linux, provides cover for at least five documented vulnerabilities.

As the new kid on the block, the M1 chip-based Mac is already on the radar of malware writers, says Kaspersky. Discovered for the first time last year, the XCSSET malware mainly targets Mac developers by injecting a malicious payload into Xcode IDE projects on the victim's Mac.

A new report from Forrester is giving enterprises a path forward out of the pandemic with a serious security warning: There are five major problems, and five attack vectors, which could slow post-pandemic progress in 2021. The five greatest threats to businesses in 2021 will be different from those in 2020, but Forrester is predicting the attack vectors used by cybercriminals to be similar to those from last year.

Jack Wallen shows you how to gain a bit more security on your Linux servers by blocking users from adding cron jobs.

Most security agencies fail to properly sanitize Portable Document Format files before publishing them, thus exposing potentially sensitive information and opening the door for attacks, researchers have discovered. An analysis of roughly 40,000 PDFs published by 75 security agencies in 47 countries has revealed that these files can be used to identify employees who use outdated software, according to Supriya Adhatarao and Cédric Lauradoux, two researchers with the University Grenoble Alpes and France's National Institute for Research in Computer Science and Automation.

Google is hurrying out a fix for a vulnerability in its Chrome browser that's under active attack - its third zero-day flaw so far this year. Another high-severity flaw is a heap-buffer overflow error that stems from Chrome tab groups.

If you're using the latest version of Bitwarden, you could simply create a new Send so it's always at the ready. With the new Bitwarden software, you can create either text or file-based Sends.

Chipmaker AMD on Monday announced the launch of its new EPYC 7003 series server processors - codenamed Milan - and the company has shared some information about new and improved security features. The new CPUs are based on the Zen 3 architecture and AMD says they bring significantly improved performance for enterprise, cloud and HPC workloads.

Some 73% of companies prefer to purchase from technology providers that are transparent and proactive in helping organizations manage their cybersecurity risk, a study released Monday by Intel finds. "Security doesn't just happen. If you are not finding vulnerabilities, then you are not looking hard enough," said Suzy Greenberg, vice president of Intel product assurance and security, in a statement.

Fintech holding firm Atlantic-Pacific Processing Systems has acquired Conformance Technologies, which specializes in solutions for assessing and monitoring risk and compliance for SMBs. APPS, which provides a wide range of solutions for financial services and banking organizations, says the deal is part of its expansion strategy. UK-based managed cloud and cybersecurity services provider Claranet announced buying Spain-based ID Group, which provides cloud and managed IT infrastructure services in Spain.