0patch, a platform for distributing security patches for various products, has announced that it plans to provide five years of additional support for Windows 10 after the OS reaches its end of life.
Security updates RSS
Fedora 38 reaches end of life on May 21st meaning that users of this version need to upgrade. If you decide to use this version, your system will gradually become more and more exploitable.
Microsoft has released a new update for the Edge browser in the Stable Channel. The latest release fixes sync-related crashes and delivers three patches for Chromium security vulnerabilities.
Microsoft released Windows security updates for Windows 11 as well as 10 this week via Patch Tuesday. It also rolled out security fixes for Office 2013/2016 that resolve spoofing and more such flaws.
Microsoft's August 2023 Exchange Server security update (SUs) had major issues, so much so that the tech giant had to pull the updates. The issue has been resolved with re-published SUs.
Microsoft has released a special Defender update for Windows 11, Windows 10, and Windows Server. This update is meant to bring improved security and performance to Windows install images.
Microsoft has released its blog post about the latest May 2023 Windows Autopatch update. The blog post outlines all the new features and Microsoft says the latest release is its most "impactful".
Microsoft and Intel released updated mitigations of MMIO security flaw last month for several Windows 10, Windows 11 and Server versions. For the remaining, the updated files are now available.
Microsoft has issued an update today about the third phase security hardening changes deployment for Windows Server Kerberos protocol. These changes are meant to patch a major security flaw.
Nvidia has released a couple of drivers today for Kepler-based GeForce GTX 600 and 700 series cards. However, these drivers are not your usual Game Ready drivers but are important security updates.
Microsoft has issued a reminder today about the third phase security hardening changes deployment for Windows Server Kerberos protocol. These changes are meant to patch a major security flaw.
The new security updates were released to deal with some vulnerabilities that were found and reported by Intel way back in June 2022, but are only just now getting patched by Microsoft.
Microsoft is seemingly targeting the improvement of the Exchange Server update and deployment process. One of the considerations includes automatic installation of cumulative updates.
Microsoft has rolled out January 2023's Security Updates (SUs) for support versions of Exchange Server. They include better security for PowerShell payloads, along with a known bug for OWA.
Windows 8.1 is reaching end of life next week, which means it will stop receiving security updates and technical support. Of course, Microsoft recommends upgrading to Windows 11, ideally on a new PC.
OnePlus have announced changes regarding software support for its upcoming phones. The company revealed that "select" handsets in 2023 and beyond would get more than three major OS updates.
_medium.jpg)
ESET has discovered another set of security vulnerabilities on Windows 11 and 10 Lenovo laptops. These allow attackers to disable Secure Boot. A list of vulnerable device models has been published.
Microsoft has implemented a public preview of a mechanism that allows Windows Update for Business customers to expedite the rollout of security updates. It's coming soon for non-security updates too.
Apple has sent out iOS and iPadOS 15.7, and macOS 12.6. These contain security patches that are already in iOS 16. Apple has two reasons for seeding incremental updates alongside latest versions.
Apple has released small updates for its iPhone, iPad, and Mac devices. macOS 12.5.1, iOS 15.6.1, and iPadOS 15.6.1 address security vulnerabilities that exist within the Kernel and WebKit.
Microsoft 365 Apps are governed by Microsoft's Modern Lifecycle Policy, which means that they will lose support on certain older operating systems that will reach the end of ESU on January 10, 2023.
Nvidia has released a couple of drivers today for Kepler-based GeForce GTX 600 and 700 series cards. However, these drivers are not your usual Game Ready drivers but are important security updates.
Microsoft has announced a significant change to its delivery process for Security Updates and Hotfixes to Exchange Server. The aforementioned updates will now be offered through .exe packages too.
A billion "Smart" IoT devices were attacked or recorded suspicious network traffic in 2021. Poor awareness, improper defenses, rare updates, and incorrect configuration are some reasons.
Apple has released iOS and iPadOS 15.3.1 to fix a WebKit vulnerability. There's another update for MacBooks to fix a bug that causes excessive battery drain and a security update for Apple Watch.
The Debian 11.2 incremental update is now out for general users. It contains more than 40 security updates and bug fixes, but a fix for X.Org vulnerabilities is still in the 'Debian Testing' channel.
The latest Edge and Chrome Stable Channel builds contain a fix for a critical User-After-Free memory flaw which could allow attackers to execute malicious code upon successful exploitation.
Xiaomi announced today that it will roll out three years' worth of of Android OS upgrades and four years of security updates to its upcoming 11T series, although this may vary based on the territory.
Brazilian criminals are capable of accessing bank accounts using data from stolen iPhones. They don't use any modern ways or advanced tools from Cellebrite, just SIM cards to access devices' data.
Security researchers are reporting that Microsoft's fix for the PrintNightmare vulnerability that rolled out to most Windows versions is ineffective, and can let attackers completely bypass it.
Microsoft has begun rolling out a mandatory update for the most recent Windows 10 versions - 2004, 20H2, and 21H1 - to patch the recently acknowledged PrintNightmare critical vulnerability.
The latest updates focus on giving organizations the ability to integrate low-code capabilities with more confidence. Three essential points of advancements have been noted in this regard.
OnePlus said in a statement that the Nord N10 5G and N100 will receive one major Android update and two years of security patches. The devices ship with OxygenOS 10.5 based on Android 10.
Essential has been doing a great job of keeping things up to date on its phone. Last month it delivered Android 9.0 Pie and today, it has released Google's September security update.
Despite Android security patches being released monthly, OEMs may not update their devices at the same rate. Now, Google is baking security patching into agreements with OEMs to improve the situation.
Google's security bulletin for April details fixes for Pixel devices which include stability improvements to the modem and audio speaker during calls, among other things. The images are available now.
Samsung has quietly ended software support for the 2016 models of the Galaxy A3, Galaxy J1, and Galaxy J3 after the company removed these handsets from its Android security updates page.
Google has updated the official support page for the notorious Nexus 6P and 5X by extending official support for these devices by a couple of months, after revising its replacement policy.
Microsoft has detailed a few changes it's making to the Creators Update servicing model, which would allow it to "routinely offer" either one or more additional updates each month.
Microsoft has announced details of its transition from individual patches and fixes for Windows 7 and 8.1, to a model of Windows 10-style cumulative 'Monthly Rollup' updates, beginning in October.
