InfoSecBulletin Cybersecurity for mankind
Google fixed a serious Chrome bug known as CVE-2024-4058 in the ANGLE graphics layer engine along with four vulnerabilities in the Chrome web browser.
CVE-2024-4058 is a vulnerability in the ANGLE graphics layer engine. It allows attackers to execute arbitrary code on macOS systems. Toan Pham and Bao Pham from Qrious Secure reported a serious issue on 2024-04-02 and received a $16,000 reward for their research.
“Forces Penpals” exposed US and UK Military Social Network’s 1 Million Records
CVE-2024-51503
Trend Micro released updates for Deep Security Agent RCE
Apple Releases Patch for two Actively Exploited Zero-Day
Maxar Space Data Leak, Company admit, Investigation ongoing!
GitHub CLI Vulnerability Could Allow RCE
“Sarcoma” ransomware group
Hacker to disclose “Popular Life Insurance” 36 GB of stolen data
BugHunt 2024: A Milestone Cyber security Competition held at Dhaka
TP-Link DHCP Vulnerability Allow Attackers Takeover Routers Remotely
WSJ reports
T-Mobile hacked in massive breach of telecom networks
Palo Alto Networks Confirms critical RCE zero-day actively exploited
The IT giant fixed a serious flaw called CVE-2024-4059, an Out of Bounds read in the V8 API, discovered by Eirik on 2024-04-08. Google fixed a high-severity flaw in Dawn. The flaw, tracked as CVE-2024-4060, is a Use after Free vulnerability in Dawn. Dawn is an open-source and cross-platform implementation of the WebGPU standard. The flaw was reported by wgslfuzz on April 9, 2024.
The Stable channel has been updated to version 124.0.6367.78/.79 for Windows and Mac. The Linux version 124.0.6367.78 will be released in the next few days/weeks.
