UCSF IT Technology

Google released Chrome 112.0.5615.137 for Mac and 112.0.5615.137/138 for Windows to address vulnerabilities in Chrome. For a complete description of the vulnerabilities and affected systems go to Chrome Stable Channel Update. IT Security

Oracle released their April Critical Patch Update to address vulnerabilities in Oracle products. For a complete description of the vulnerabilities and affected systems go to Oracle Critical Patch Update Advisory - April 2022. IT Security Read more about IT Security service offerings.

Threat Alert: What to Watch For Cybercriminals have launched a series of phishing attacks using a timely tax-themed lure.  The lures imitate the sharing of 2022 tax documents via a Citrix ShareFile link. The lures note that the download expires on April 18, 2023, the tax-filing deadline in the United States.

Threat Alert: What to Watch For Cybercriminals have launched Okta-branded phishing attacks encouraging recipients to follow a link to resynchronize their Okta and Microsoft accounts.   Clicking on the link leads to a credential phishing kit that redirects the user to a lookalike Microsoft login page.

Google has released Chrome version 112.0.5615.121 to address an actively exploited zero-day vulnerability in Windows, macOS and Linux versions of the Google Chrome desktop browser. For a complete description of the vulnerabilities and affected systems go to Chrome Release Note.

Juniper Networks has released security updates to address vulnerabilities affecting multiple Juniper products. An attacker could exploit some of these vulnerabilities to take control of an affected system.

SAP released their April 2023 updates to address vulnerabilities in various SAP products including fixes for two Critical vulnerabilities that impact the SAP Diagnostics Agent and the SAP BusinessObjects Business Intelligence Platform.