Stay informed with the latest Security Update news. From cyber threats to patch releases, ensure your infosec knowledge is up-to-date.
Search across headline titles and summaries.
Background for this topic.
Security Update is an essential component in the field of information security concerned with distributing and applying fixes or improvements to software and systems. These updates are intended to address vulnerabilities, bugs, and security threats that could compromise the integrity, confidentiality, and availability of information technology systems and data.
In information security, a security update is a critical mechanism for protecting computer systems against the ever-evolving landscape of cyber threats. Vendors and developers regularly release these updates in response to the discovery of security flaws that attackers could exploit. Organizations and individual users must promptly apply these security updates to ensure their systems are fortified against potential security breaches. Failure to implement these updates in a timely manner leaves systems susceptible to attacks such as malware infections, unauthorized data access, and service disruptions, which could lead to significant data loss, financial damage, and erosion of trust among customers and stakeholders.
Security updates for various components including operating systems, applications, databases, and network devices, play a pivotal role in maintaining the overall security posture of an organization's or individual's digital environment.">
Weekly headline count for the current query.
Adobe has released an emergency security update for Acrobat Reader to fix a vulnerability, tracked as CVE-2026-34621, that has been exploited in zero-day attacks since at least December. [...]
Oracle has released an out-of-band security update to fix a critical unauthenticated remote code execution vulnerability in Identity Manager and Web Services Manager tracked as CVE-2026-21992. [...]
The Apache Software Foundation (ASF) has released a security update to address an important vulnerability in its Tomcat server software that could result in remote code execution (RCE) under certain conditions
VMware has released another security update for CVE-2024-38812, a critical VMware vCenter Server remote code execution vulnerability that was not correctly fixed in the first patch from September 2024. [...]
Microsoft is working to fix a known issue causing 0x80070643 errors when installing the KB5034441 security update that patches the CVE-2024-20666 BitLocker vulnerability. [...]
Sophos was forced to backport a security update for CVE-2022-3236 for end-of-life (EOL) firewall firmware versions after discovering hackers actively exploiting the flaw in attacks. [...]
Adobe released an emergency ColdFusion security update that fixes critical vulnerabilities, including a fix for a new zero-day exploited in attacks. [...]
GitLab has released an emergency security update, version 16.0.1, to address a maximum severity (CVSS v3.1 score: 10.0) path traversal flaw tracked as CVE-2023-2825. [...]
Last week, we wrote about a bunch of memory management bugs that were fixed in the latest security update for the popular OpenSSL encryption library. Along with those memory bugs, we also reported on a bug dubbed CVE-2022-4304: Timing Oracle in RSA Decryption. In this bug, firing the same encrypted message over and over again […]