Google just released an emergency update for Chrome. In a new blog post, Google confirmed the discovery of the Zero Day vulnerability and it impacts Chrome on Windows, Mac and Linux. Google also confirmed it is aware that an exploit exists in the wild. The vulnerability, CVE-2023-2033, stems from a “Type [...]
Apple has pushed out security updates that fix two actively exploited zero-day vulnerabilities (CVE-2023-28205, CVE-2023-28206) in macOS, iOS and iPadOS. CVE-2023-28205 is a use after free issue in the WebKit browser engine, which is used by Safari and all web browsers on iOS and iPadOS. The flaw can be triggered via [...]
Adobe just released eight advisories addressing multiple vulnerabilities in Adobe Commerce, Experience Manager, Illustrator, Dimension, Creative Cloud, Substance 3D Stager, Photoshop, and ColdFusion products. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on [...]
The Cybersecurity and Infrastructure Security Agency (CISA) recently released a Ransomware Advisory site to publish updates for network defenders that detail various ransomware variants and ransomware threat actors. You can visit stopransomware.gov to see all #StopRansomware advisories and to learn more about other ransomware threats and no-cost resources. The [...]
Apple has released emergency security updates to address a new zero-day vulnerability used in attacks to hack iPhones, iPads, and Macs. The zero-day patched today is tracked as CVE-2023-23529 [1, 2] and is a WebKit confusion issue that could be exploited to trigger OS crashes and gain code execution on [...]
NJCCIC recently identified an aggressive phishing campaign targeting several New Jersey State agencies that regularly communicate with law firms. The phishing email’s subject line claims to reference various types of legal documents, such as settlements, reviews, or payment claims. The body contains an HTML link that appears to be [...]
The Department of Health and Human Services (HHS) warned on Monday that pro-Russian hacktivist group Killnet is actively targeting the U.S. healthcare industry with distributed denial of service (DDoS) attacks. A pro-Russian hacktivist group active since at least January 2022, Killnet known for its DDoS campaigns against countries supporting Ukraine, [...]
Microsoft Kicks Off 2023 With 98 Fixes Microsoft released a whopping 98 security fixes for yesterday's Patch Tuesday, almost double the number it turned out leading into the holiday season. Out of the 98, eleven were classified as "Critical", with one identified as being actively exploited. The actively exploited [...]
Critical Patches Recently Released for Microsoft Products Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, [...]
Thinking About Cyber Insurance? Receive a Free Risk Assessment to Learn More If you are considering cyber insurance, now is a great time. According to a recent Wall Street Journal article, it seems demand has cooled off a bit after a surge in ransomware attacks in recent years propelled [...]
Chrome users urged to update as Google patches seventh zero-day exploit this year Late last week, Google rolled out emergency fixes to contain an actively exploited zero-day flaw in its Chrome web browser. The vulnerability, tracked as CVE-2022-3723, has been described as a type confusion flaw in the V8 JavaScript engine. Successful [...]
It's the final countdown!! As we head into Week 4 (10/24-10/28) we discuss the importance of applying software updates. Please review the videos and access our free resources to learn how to patch security vulnerabilities that cyber threat actors can exploit. Staying informed regarding publicly disclosed vulnerabilities and applying [...]
1 South Corporate Drive, Riverdale, NJ 07457
CALL: +1-973-276-0808
FAX: 973-248-6645
EMAIL: [email protected]
NJ Service Areas
All work performed by Business Machine Technologies Inc. shall be subject to the terms of the Master Services Agreement which can be reviewed at www.bmtcorp.com/MSA
For 30+ years we have been dedicated to providing the highest levels of customer service, expert support, and the best in technology solutions to our clients.
