This week, we cover critical vulnerabilities in SolarWinds, new exploits, National Public Data breach, and Microsoft's plans to roll out Recall.
SolarWinds Issues Critical Patch for Second Web Help Desk Vulnerability
Links: Dark Reading Bleeping Computer
SolarWinds has released patches for a second critical vulnerability in its Web Help Desk software, including a fix for a hardcoded credentials flaw. Users are urged to apply these updates immediately to prevent potential exploitation.
InfoStealers Target macOS to Grab Crypto Wallets and Browser Credentials
Link: Dark Reading
InfoStealers are increasingly targeting macOS systems to steal cryptocurrency wallets and browser credentials. This growing threat highlights the importance of robust security practices on macOS, traditionally considered a safer platform.
Microsoft to Roll Out 'Windows Recall' Feature to Insiders in October
Link: Bleeping Computer
Microsoft is set to introduce a new "Windows Recall" feature to Windows Insiders in October. This feature aims to help users revert unwanted changes, providing an added layer of protection against potential system issues caused by updates.
National Public Data Confirms Massive Breach
Link: Dark Reading
National Public Data has confirmed a massive data breach, exposing sensitive information on a wide scale. The breach underscores the ongoing risks of data exposure and the need for organizations to strengthen their cybersecurity defenses.
Google Chrome Update Fixes Flaw Exploited in the Wild
Link: Dark Reading
Google has released an update for Chrome to fix a critical flaw that was being actively exploited. Users are strongly advised to update their browsers immediately to protect against potential attacks.
Microsoft Copilot Studio Exploit Leaks Sensitive Cloud Data
Link: Dark Reading
An exploit in Microsoft Copilot Studio has been discovered, leading to leaks of sensitive cloud data. This vulnerability affects users leveraging Copilot's AI-driven features, raising concerns over cloud security and data privacy.
