SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Thursday April 17th: Apple Updates; Oracle Updates; Google Chrome Updates; CVE News;
Apr 17, 2025
Exciting tech updates abound as Apple rolls out security fixes for iOS and other platforms, addressing exploited vulnerabilities. Meanwhile, Oracle's critical patch update tackles a staggering 378 vulnerabilities, many linked to open-source software. Google Chrome also joins the mix, fixing critical vulnerabilities in its latest release. Finally, there’s buzz about the CVE numbering scheme, with MITRE receiving extended funding and other organizations considering alternative vulnerability registers.
AI Snips
Chapters
Transcript
Episode notes
Update Apple Devices Now
- Apple released updates fixing two actively exploited vulnerabilities in iOS, iPadOS, macOS, and VisionOS.
- Update your Apple devices immediately to protect against these threats.
Oracle Breach Credential Guidance
- CISA published guidance after Oracle cloud breach focusing on credential risks including stolen passwords and API keys.
- Change all affected credentials and monitor logs for unusual activity to prevent follow-on exploits.
Apply Google Chrome Update
- Google Chrome fixed two security vulnerabilities, including one critical code execution flaw.
- Restart your Chrome browser to apply the update and maintain security.