The Indian Computer Emergency Response Team (CERT-In) has issued a high-severity security advisory for Apple users, warning of multiple vulnerabilities that could expose devices to unauthorized access, data manipulation, and denial of service attacks.

Affected Devices and Versions:

• iPhones and iPads: iOS/iPadOS versions before 18.1 and 17.7.1
• Mac computers:
  • macOS Sequoia: versions before 15.1
  • macOS Sonoma: versions before 14.7.1
  • macOS Ventura: versions before 13.7.1
• Apple Watch: watchOS versions before 11.1
• Apple TV: tvOS versions before 18.1
• Safari browser: versions before 18.1
• Apple Vision Pro: visionOS versions before 2.1

The security agency has categorized this as a high-severity threat, emphasizing the urgency for users to update their devices immediately.

CERT-In recommends that all Apple device users in India should:

• Check their current device version
• Install the latest security updates immediately
• Back up important data before updating
• Ensure devices are connected to a secure network while updating

This security alert affects a wide range of Apple products across their ecosystem, making it particularly significant for users who own multiple Apple devices.

The post CERT-In Issues High-Severity Security Alert for Apple Devices in India; Immediate Updates Recommended appeared first on The Tech Outlook.

Shocked reading the headline? Well, this indeed is true as the government has recently warned about various security issues that come with different Microsoft products. Let’s learn about these issues and how Microsoft users can safeguard their devices from these vulnerabilities.

It would be not wrong to say that almost everyone working on a PC or laptop has been using Microsoft apps and tools for a long time now. The users now need to be a bit careful as CERT-In (Indian Computer Emergency Response Time) has warned about potential vulnerabilities in Microsoft products like Windows, Office, Developer tools, Bing, and Microsoft apps.

According to the CERT-In report, “Multiple vulnerabilities have been reported in Microsoft products which could allow an attacker to gain elevated privileges, obtain sensitive information, conduct remote execution attacks, bypass security restrictions, conduct spoofing attacks, conduct tampering attacks or cause denial of service conditions.”

To avoid these above-mentioned risks, Microsoft users can follow a few ways to protect their device- Install regular software updates, keep strong and unique passwords, enable two-factor authentication, be careful in opening emails and links, install and maintain antivirus software, backup data regularly, monitor accounts and systems and secure network devices.

Stay tuned to get more latest tech updates.

The post Alert! CERT-In Warns About Potential Vulnerabilities In Microsoft Windows, Microsoft Office, Developer Tools, Bing And Microsoft Apps appeared first on The Tech Outlook.

Microsoft Edge, a cross-platform web browser, was produced by Microsoft. It was first made available for Windows 10 and Xbox One in 2015, and then in 2017, 2018, and 2019 it was made accessible for Android, iOS, macOS, and older versions of Windows, as well as Linux and Windows XP. It was initially offered in 2015 coupled with an Xbox One and Windows 10.

Microsoft Edge users have been cautioned by The Indian Computer Emergency Response Team Center to be vigilant and take precautions against potential hacker attacks on the software. On September 20, the Indian Computer Emergency Response Team (CERT-IN) published an alert with a high severity rating about a number of publicly revealed web browser vulnerabilities.
CERT-IN occasionally publishes alert and vulnerability notices on its website. In its most recent vulnerability note, the organization stated that “Multiple vulnerabilities have been found in Microsoft Edge.” According to the statement, the flaws “may enable a remote attacker to execute arbitrary code or inflict denial of service conditions on the targeted system.”

The vulnerabilities were found in software that was upgraded before 105.0.1343.42, according to CERT-IN. According to the study, these problems in Google Chrome for Desktop are brought on by use-after-free flaws (caused by the operation of dynamic memory allocation in PDF and Frames). A further component that leads to the vulnerabilities is the heap-based buffer overflow.
An attacker will be able to access the system and bypass the device’s security protections through these weaknesses. A remote hacker’s denial of service attack and arbitrary code execution would render the system inaccessible to the original user after that.

Users should update their Microsoft Edge browsers to the most recent stable channel version as a fix.

According to the Information Technology (Amendment) Act of 2008, CERT-IN is a legally recognized organization. The Ministry of Electronics and Information Technology’s nodal organization deals with computer security-related concerns, keeps an eye out for security holes, and promotes strong IT security practices throughout the entire nation. It alerts users about security flaws and dangers like phishing and hacking.

The post Microsoft Edge under “probable hack threat” by The Indian Computer Emergency Response Team (CERT-IN) appeared first on The Tech Outlook.