Zum Inhalt springen
ITtechNews – Cybersicherheit und Datenschutz
  • Datenschutzbeauftragter & Skillset
  • Externer ISB/CISO und NIS2/27001 Consulting
  • Blog IT-Security
  • Datenschutzerklärung
  • Impressum
Suche
ITtechNews – Cybersicherheit und Datenschutz
Menü schließen
  • Datenschutzbeauftragter & Skillset
  • Externer ISB/CISO und NIS2/27001 Consulting
  • Blog IT-Security
  • Datenschutzerklärung
  • Impressum
ITtechNews – Cybersicherheit und Datenschutz
Suche Menü umschalten

Apple iOS 14.8 Update dringend installieren

Von Michael14. September 202116. Dezember 2025Uncategorized

Kurz vor dem Release von iOS 15 hat Apple heute noch ein wichtiges Security-Update veröffentlicht.Es gibt wohl mehrere Zero-Day Exploits, deshalb schnellstmöglich die Geräte aktualisieren.

Angriffsszenario:
Sophos Link
Apple Sicherheitshinweis

Beitragsnavigation

Microsoft Exchange Zero Day Schwachstelle
Apple iOS 17.5 released

RSS Golem Security News

  • Forscher warnen: Ransomware-Befall durch Interpol-Masche mit Fake-Beweisen 2. Juli 2026
    Angreifer geben sich bei Unternehmen als Personal von Interpol aus und ködern mit angeblichen Beweismitteln. Doch stattdessen gibt es Ransomware. (Phishing, Virus)
  • 81 Millionen Anmeldeversuche: Massenangriff auf Microsoft-Konten 2. Juli 2026
    Forscher warnen vor einer neuen Angriffswelle auf Microsoft-365-Konten. Die Angreifer testen massenhaft Zugangsdaten durch, teilweise mit Erfolg. (Cybercrime, Microsoft)
  • Echte Adressen ungeschützt: Lücke in Apples "E-Mail-Adresse verbergen"-Funktion 2. Juli 2026
    Verborgene E-Mail-Adressen sind bei Apple laut einem Forscher doch nicht so verborgen, wie erhofft. Ein Fix lässt schon rund ein Jahr auf sich warten. (Datenschutz, Apple)
  • Tödlicher Auffahrunfall: Elektrolastwagen Tesla Semi in Unfall verwickelt 2. Juli 2026
    Weil der Fahrer offenbar eingeschlafen ist, ist ein Tesla Semi in Nevada auf stehende Fahrzeuge aufgefahren. Zwei Menschen starben. (Tesla, Elektroauto)
  • Anzeige: BCM-Strategien für effektives IT-Notfallmanagement 2. Juli 2026
    Ausfälle und Sicherheitsvorfälle gefährden kritische Geschäftsprozesse. Wie Notfallpläne entwickelt und Business-Impact-Analysen praxisnah durchgeführt werden, zeigt dieser Workshop. (Golem Karrierewelt, Sicherheitslücke)
  • (g+) Kernel Live-Patching: Patchen ohne Neustart - und warum der Reboot trotzdem kommt 1. Juli 2026
    Live-Patching schließt Kernel-Lücken ohne Neustart - aber nicht jede Lücke. Wie Live-Patching funktioniert und wo seine Grenzen liegen. (Security, Linux-Kernel)
  • Exploitarium: Anonymer Forscher leakt massenweise Zero-Day-Exploits 1. Juli 2026
    Ein öffentliches Github-Repository enthält 26 Exploits für Zero-Day-Lücken in mehreren populären Softwaretools. Und es werden immer mehr. (Sicherheitslücke, KI)

RSS CERT EU

  • 2026-008: Critical vulnerabilities in Ivanti Sentry 10. Juni 2026
    On 9 June 2026, Ivanti released a security advisory addressing two critical vulnerabilities in their Sentry products[1]. An attacker could exploit those flaws to achieve unauthenticated remote code execution on the vulnerable device.
  • 2026-007: Critical Vulnerability in Windows Netlogon 10. Juni 2026
    On 12 May 2026, Microsoft published a security advisory addressing a critical vulnerability affecting Windows Server when acting as a domain controller. This vulnerability allows an unauthenticated attacker to execute arbitrary code over a network. According to The Centre for Cybersecurity Belgium (CCB), this vulnerability is currently exploited by threat actors. It is strongly recommended […]
  • 2026-006: Critical Vulnerability in PAN-OS 6. Mai 2026
    On 6 May 2026, Palo Alto published a security advisory addressing a critical vulnerability affecting PAN-OS. This vulnerability allows an unauthenticated attacker to execute arbitrary code with root privileges. Palo Alto observed limited exploitation of this vulnerability. It is strongly recommended updating affected appliances as soon as patches will be available, and to apply workarounds […]
  • 2026-005: High Vulnerability in the Linux Kernel ("Copy Fail") 30. April 2026
    On 29 April 2026, a high local privilege escalation vulnerability in the Linux kernel, tracked as CVE-2026-31431 and named "Copy Fail", was publicly disclosed. The vulnerability affects every mainstream Linux distributions shipping a kernel built since 2017. A public proof-of-concept exploit has been released. As of the date of this advisory, no distribution has shipped […]
  • 2026-004: Critical Vulnerability in SharePoint Exploited 25. März 2026
    On 17 March 2026, Microsoft updated one of its January 2026 security advisories related to a remote code execution vulnerability in Microsoft SharePoint. Specifically, Microsoft raised the CVSS score and changed the FAQ section to indicate that the vulnerability could be exploited by an unauthenticated attacker. This vulnerability was added in the CISA's Known Exploited […]
  • 2026-003: Multiple Vulnerabilities in Citrix NetScaler and Citrix ADC 23. März 2026
    On 23 March 2026, Citrix published a security advisory addressing multiple vulnerabilities affecting NetScaler ADC and NetScaler Gateway. These vulnerabilities may lead to sensitive information disclosure and user session mix-up under specific configurations. At the time of writing, there is no public evidence of active exploitation. It is strongly recommended updating affected gateways, prioritising internet-facing […]
  • 2026-002: Multiple Vulnerabilities in Cisco Products 26. Februar 2026
    On 25 February 2026, Cisco released security advisories addressing multiple high and critical severity vulnerabilities in Cisco Catalyst SD-WAN controllers and Cisco SD-WAN Manager. If exploited, these vulnerabilities could allow attackers to gain administrative access to compromised systems. It is recommended to capture forensic evidence, hunt for indicators of compromise, and apply updates as soon […]
  • 2026-001: Critical vulnerabilities in Ivanti EPMM 30. Januar 2026
    On 29 January 2026, Ivanti released a security advisory addressing two critical vulnerabilities in their EPMM products. An attacker could exploit those flaws to achieve unauthenticated remote code execution on the vulnerable device. One of these vulnerabilities have been exploited in a limited number of cases.
  • 2025-042: Critical Vulnerability in Cisco Secure Email and Web Manager 18. Dezember 2025
    On December 17, 2025, Cisco released a security advisory for a critical vulnerability affecting Cisco Secure Email Gateway and Cisco Secure Email and Web Manager products. It is recommended to follow Cisco's recommendations to check whether vulnerable appliances have been compromised, and to remediate the issue. There is no patch available for this vulnerability yet.
  • 2025-041: Critical Security Vulnerability in React Server Components 4. Dezember 2025
    On December 3, 2025, the React Team publicly disclosed a critical security vulnerability affecting React Server Components (RSC) and related packages. The vulnerability allows for unauthenticated remote code execution (RCE) via maliciously crafted HTTP requests. It is recommended to update all affected component packages and any frameworks that integrate them.
© 2026 ITtechNews - Cybersicherheit und Datenschutz.