This week, Apple released security patches for many of their popular products. The updates include security fixes for iOS, tvOS, watchOS, Safari, and Xcode. Combined, they fix tens of vulnerabilities, including some pretty serious, Wi-Fi-related code execution flaws in iOS. Of note, Apple didn't release a security update for OS X yet. Watch the video below for quick highlights, … [Read more...]
Corey Nachreiner
Recognized as a thought leader in IT security, Nachreiner spearheads WatchGuard's technology vision and direction. Previously, he was the director of strategy and research at WatchGuard. Nachreiner has operated at the frontline of cyber security for 16 years, and for nearly a decade has been evaluating and making accurate predictions about information security trends.
As an authority on network security and internationally quoted commentator, Nachreiner's expertise and ability to dissect complex security topics make him a sought-after speaker at forums such as Gartner, Infosec and RSA. He is also a regular contributor to leading publications including CNET, Dark Reading, eWeek, Help Net Security, Information Week and Infosecurity, and delivers WatchGuard's "Daily Security Byte" video on Facebook.
Ccleaner Supply-chain Attack – Daily Security Byte
Ccleaner is one of the most widely used Windows maintenance programs out there, with over 2 billion downloads. In fact, it was a utility that even I used often before moving to OS X. Unfortunately, Talos researchers have discovered that the official Ccleaner installer had been booby-trapped with malware for over a month. In order to have planted this malware into an installer … [Read more...]
BlueBorne Bluetooth Vulnerabilities – Daily Security Byte
Imagine this nightmare wireless attack scenario. A guest walks into your offices not realizing his mobile wireless device is already infected with malware that spreads wirelessly. This guest's device automatically infects any other device it comes into proximity with. The infection doesn't require your users to interact in any way, nor does it require them to pair their devices … [Read more...]
Microsoft Patches 0day – Daily Security Byte
Every month, Microsoft and Adobe both release all their security updates for various software products on the second Tuesday of the month. In September, both companies release a bunch of updates for many of their products, including, Windows, IE, Edge, Office, Flash, and much more. Microsoft even released an update to fix a zero day vulnerability that nation state threat actors … [Read more...]
“Leaky X” iOS 0day – Daily Security Byte
If you check your Exchange email from an iPhone, on an open Wi-Fi network, you may be offering your Exchange credentials to everyone else on that network. A researcher named James Litwin has disclosed a new iOS vulnerability he calls Leaky X. According to Litwin, the iOS mail app sends unencrypted credentials to Exchange servers during the TCP/IP handshake (before SSL … [Read more...]
