Security Flaw
-
{
- All
- News
- Videos
-
CERT-In Warns Google Chrome Users of High-Severity Remote Code Execution Vulnerability
CERT-In has issued a high-severity alert (CIVN-2025-0274) for a remote code execution vulnerability in Google Chrome for desktop. The flaw, caused by improper implementation in Chrome’s V8 engine, could allow attackers to execute code with user privileges, leading to system takeover, data theft, or service disruption. It affects Chrome versions p...
-
CERT-In Asks Mozilla Firefox Users to Install Browser Updates to Remain Safe From Security Vulnerabilities
Mozilla has fixed multiple high-severity vulnerabilities across Firefox, Firefox ESR, and Thunderbird, which could allow attackers to execute code or access sensitive data. The flaws, affecting Firefox versions prior to 144, ESR versions prior to 115.29 and 140.4, and Thunderbird versions prior to 140.4 and 144, include use-after-free errors, memor...
-
CERT-In Highlights Zoom Security Flaws That Could Let Hackers Access Meeting, Sensitive Information
The Indian Computer Emergency Response Team (CERT-In) has issued a notification asking Zoom for Windows, macOS, Android, and iOS users to download the latest available update of the app, as multiple vulnerabilities have been found in its particular version. The security flaws allow bad actors to gain unauthorised access to Zoom Rooms and get their ...
-
Google Chrome, Microsoft Edge Security Flaws: CERT-In Asks Users to Update to Latest Versions With Security Fixes
The Indian Computer Emergency Response Team (CERT-In), on October 15, released two vulnerability notes to warn Google Chrome and Chromium-based Microsoft Edge users of multiple security flaws. These vulnerabilities can be exploited by hackers, granting them unauthorised access to a user’s desktop. However, people can install the latest available ...
-
Microsoft SharePoint Servers in Thousands of Firms Targeted Using ToolShell Zero-Day Vulnerability
Microsoft has warned customers about active attacks exploiting a remote code execution (RCE) vulnerability in its SharePoint server software. Malicious actors are using this flaw to gain unauthorised and persistent access to on-premise servers, and thousands of organisations could be affected. Attackers may retain access even after servers are patc...
-
Google Chrome Update Patches Security Flaw That Granted Attackers Access When Users Visited Malicious Websites
Google Chrome was recently impacted by a security flaw that enabled remote code execution, with the company confirming active exploitation by hackers. An update addressing the vulnerability is rolling out to users across Windows, Mac, and Linux. Users are urged to install the latest Chrome version to ensure their computers are protected against thi...
-
Coros Pace 3, Other Models Affected by Flaw That Lets Malicious Users Access Data, Snoop on Notifications
Coros Pace 3 and several other smartwatch models are affected by a Bluetooth vulnerability, allowing nearby malicious users to access personal data, view smartphone notifications, or reset devices. The company acknowledged the flaw, and confirmed it is working on updates and patches for newer models are expected by the end of July.
-
Qualcomm Fixes Zero-Day Security Vulnerabilities Used By Hackers, Cybercriminals
Qualcomm has issued patches for several critical security flaws, including three zero-day vulnerabilities, which the chipmaker warns may have been actively exploited by hackers. These vulnerabilities primarily impact the Adreno GPU driver across several Qualcomm-powered devices. Users will have to wait for updates from device manufacturers to recei...
-
Google Chrome Security Flaws Could Grant Hackers Unauthorised System Access: CERT-In
CERT-In has warned of multiple high-severity security flaws in Google Chrome for Desktop, potentially exposing numerous users. Google has since released patches to address the vulnerabilities. The Indian cybersecurity agency has urged all individuals and organisations using Chrome on Windows, Mac, and Linux to update to the newest version to safegu...
-
CERT-In Warns of Multiple Vulnerabilities Affecting Millions of iOS and Android Devices
The Indian Computer Emergency Response Team (CERT-In) has warned users of security vulnerabilities affecting Android, iOS, and iPadOS devices. Separate advisories warn of a denial-of-service flaw impacting iPhones and iPads on recent software versions, and multiple issues in Android that could grant unauthorised device access.
-
Google Patches Critical Android Zero-Day Security Flaws Exploited by Hackers
Google has released a new security update that patches two critical zero-day vulnerabilities on Android devices. One of the flaws allows zero-click exploits, enabling hackers to access sensitive data without user interaction. Google Pixel users should update immediately, while others will have to wait for manufacturers to release patches.
-
Google Chrome Update Fixes Zero-Day Security Flaw That Targeted Media, Government and Educational Institutions
Google has patched a critical security flaw in its Chrome browser that allowed attackers to bypass protections. Discovered by Kaspersky’s GReAT team, the vulnerability reportedly targeted media, educational, and government entities. Chrome users should update their browsers promptly, while updates for other Chromium-based browsers are expected to...
-
iOS 18.3.1 Update Released With Fix for Critical, Actively Exploited USB Security Flaw
iOS 18.3.1 began rolling out to users on Monday, bringing a crucial patch for a critical security flaw that allowed sophisticated attackers to access a user's iPhone, even when locked. Apple confirmed that the flaw might have been exploited to target individuals. Users with eligible iPhone models should update to the latest version to fix the vulne...
-
Google Chrome Updated With Patch for Nasty Zero-Day Vulnerability Exploited by Attackers
Google Chrome users should update their browser in order to remain protected from a serious security flaw that was actively exploited in the wild, according to the company. The vulnerability affects users on outdated versions of Chrome on Windows, macOS, and Linux by takin advantage of a flaw in a component in Chrome that renders web content on a u...
-
LeftoverLocals GPU Flaw Exposes AI Data in Devices Equipped with Apple, AMD, and Qualcomm Hardware
A security flaw affecting GPUs from AMD, Apple, Qualcomm, and Imagination can expose artificial intelligence (AI) data on the devices, according to security researchers. Several devices equipped with GPUs from these firms, including some iPhone, iPad, and Mac computers, are said to be affected by the vulnerability. Personal information being used i...
-
CERT-In Warns Google Chrome Users of High-Severity Remote Code Execution Vulnerability
CERT-In has issued a high-severity alert (CIVN-2025-0274) for a remote code execution vulnerability in Google Chrome for desktop. The flaw, caused by improper implementation in Chrome’s V8 engine, could allow attackers to execute code with user privileges, leading to system takeover, data theft, or service disruption. It affects Chrome versions p...
-
CERT-In Asks Mozilla Firefox Users to Install Browser Updates to Remain Safe From Security Vulnerabilities
Mozilla has fixed multiple high-severity vulnerabilities across Firefox, Firefox ESR, and Thunderbird, which could allow attackers to execute code or access sensitive data. The flaws, affecting Firefox versions prior to 144, ESR versions prior to 115.29 and 140.4, and Thunderbird versions prior to 140.4 and 144, include use-after-free errors, memor...
-
CERT-In Highlights Zoom Security Flaws That Could Let Hackers Access Meeting, Sensitive Information
The Indian Computer Emergency Response Team (CERT-In) has issued a notification asking Zoom for Windows, macOS, Android, and iOS users to download the latest available update of the app, as multiple vulnerabilities have been found in its particular version. The security flaws allow bad actors to gain unauthorised access to Zoom Rooms and get their ...
-
Google Chrome, Microsoft Edge Security Flaws: CERT-In Asks Users to Update to Latest Versions With Security Fixes
The Indian Computer Emergency Response Team (CERT-In), on October 15, released two vulnerability notes to warn Google Chrome and Chromium-based Microsoft Edge users of multiple security flaws. These vulnerabilities can be exploited by hackers, granting them unauthorised access to a user’s desktop. However, people can install the latest available ...
-
Microsoft SharePoint Servers in Thousands of Firms Targeted Using ToolShell Zero-Day Vulnerability
Microsoft has warned customers about active attacks exploiting a remote code execution (RCE) vulnerability in its SharePoint server software. Malicious actors are using this flaw to gain unauthorised and persistent access to on-premise servers, and thousands of organisations could be affected. Attackers may retain access even after servers are patc...
-
Google Chrome Update Patches Security Flaw That Granted Attackers Access When Users Visited Malicious Websites
Google Chrome was recently impacted by a security flaw that enabled remote code execution, with the company confirming active exploitation by hackers. An update addressing the vulnerability is rolling out to users across Windows, Mac, and Linux. Users are urged to install the latest Chrome version to ensure their computers are protected against thi...
-
Coros Pace 3, Other Models Affected by Flaw That Lets Malicious Users Access Data, Snoop on Notifications
Coros Pace 3 and several other smartwatch models are affected by a Bluetooth vulnerability, allowing nearby malicious users to access personal data, view smartphone notifications, or reset devices. The company acknowledged the flaw, and confirmed it is working on updates and patches for newer models are expected by the end of July.
-
Qualcomm Fixes Zero-Day Security Vulnerabilities Used By Hackers, Cybercriminals
Qualcomm has issued patches for several critical security flaws, including three zero-day vulnerabilities, which the chipmaker warns may have been actively exploited by hackers. These vulnerabilities primarily impact the Adreno GPU driver across several Qualcomm-powered devices. Users will have to wait for updates from device manufacturers to recei...
-
Google Chrome Security Flaws Could Grant Hackers Unauthorised System Access: CERT-In
CERT-In has warned of multiple high-severity security flaws in Google Chrome for Desktop, potentially exposing numerous users. Google has since released patches to address the vulnerabilities. The Indian cybersecurity agency has urged all individuals and organisations using Chrome on Windows, Mac, and Linux to update to the newest version to safegu...
-
CERT-In Warns of Multiple Vulnerabilities Affecting Millions of iOS and Android Devices
The Indian Computer Emergency Response Team (CERT-In) has warned users of security vulnerabilities affecting Android, iOS, and iPadOS devices. Separate advisories warn of a denial-of-service flaw impacting iPhones and iPads on recent software versions, and multiple issues in Android that could grant unauthorised device access.
-
Google Patches Critical Android Zero-Day Security Flaws Exploited by Hackers
Google has released a new security update that patches two critical zero-day vulnerabilities on Android devices. One of the flaws allows zero-click exploits, enabling hackers to access sensitive data without user interaction. Google Pixel users should update immediately, while others will have to wait for manufacturers to release patches.
-
Google Chrome Update Fixes Zero-Day Security Flaw That Targeted Media, Government and Educational Institutions
Google has patched a critical security flaw in its Chrome browser that allowed attackers to bypass protections. Discovered by Kaspersky’s GReAT team, the vulnerability reportedly targeted media, educational, and government entities. Chrome users should update their browsers promptly, while updates for other Chromium-based browsers are expected to...
-
iOS 18.3.1 Update Released With Fix for Critical, Actively Exploited USB Security Flaw
iOS 18.3.1 began rolling out to users on Monday, bringing a crucial patch for a critical security flaw that allowed sophisticated attackers to access a user's iPhone, even when locked. Apple confirmed that the flaw might have been exploited to target individuals. Users with eligible iPhone models should update to the latest version to fix the vulne...
-
Google Chrome Updated With Patch for Nasty Zero-Day Vulnerability Exploited by Attackers
Google Chrome users should update their browser in order to remain protected from a serious security flaw that was actively exploited in the wild, according to the company. The vulnerability affects users on outdated versions of Chrome on Windows, macOS, and Linux by takin advantage of a flaw in a component in Chrome that renders web content on a u...
-
LeftoverLocals GPU Flaw Exposes AI Data in Devices Equipped with Apple, AMD, and Qualcomm Hardware
A security flaw affecting GPUs from AMD, Apple, Qualcomm, and Imagination can expose artificial intelligence (AI) data on the devices, according to security researchers. Several devices equipped with GPUs from these firms, including some iPhone, iPad, and Mac computers, are said to be affected by the vulnerability. Personal information being used i...
