Richard Chirgwin

Richard Chirgwin is a veteran of Australia's tech press, covering IT, telecommunications, security, networking, and protocols. Prior to iTnews, he worked at The Register for 9 years.

Recent articles by Richard Chirgwin

VMware patches against sandbox escape

VMware patches against sandbox escape

Critical vulnerabilities in Workstation and Fusion software.
Mar 8 2024 11:04AM
Cisco warns Android 14 breaks Webex, Jabber clients

Cisco warns Android 14 breaks Webex, Jabber clients

Deprecated API blocks notifications.
Mar 8 2024 11:03AM
Lexmark printers need firmware patch

Lexmark printers need firmware patch

More than 150 models affected by RCEs.
Mar 1 2024 10:37AM
Aruba Networks patches critical Struts 2 vulnerability

Aruba Networks patches critical Struts 2 vulnerability

Security roll-up covers ten vulns.
Mar 1 2024 10:36AM
Progress patches authentication bug in OpenEdge

Progress patches authentication bug in OpenEdge

All supported versions affected.
Feb 28 2024 11:47AM
APT28 is recruiting Ubiquiti EdgeRouters into botnets

APT28 is recruiting Ubiquiti EdgeRouters into botnets

Russian actors spread malware via compromised routers.
Feb 28 2024 11:47AM
Dell moves on Apache Struts 2 vulnerability

Dell moves on Apache Struts 2 vulnerability

Avamar, backup appliance affected.
Feb 26 2024 11:46AM
VMware client plug-in has critical vulnerability

VMware client plug-in has critical vulnerability

Remove enhanced authentication, company says.
Feb 21 2024 12:12PM
SolarWinds patches three critical bugs

SolarWinds patches three critical bugs

Zero Day Initiative discovered five RCEs.
Feb 19 2024 10:13AM
DNS resolvers inherited specification bug

DNS resolvers inherited specification bug

One “Key Trap” packet can crash the target.
Feb 16 2024 10:45AM
Microsoft patches 80 vulnerabilities

Microsoft patches 80 vulnerabilities

Two bugs under exploit, plus other critical patches.
Feb 14 2024 11:19AM
Cisco unified comms gateways have API bug

Cisco unified comms gateways have API bug

Need patching against CSRF vulnerabilities.
Feb 9 2024 9:11AM
Chinese attackers camped on US networks for five years

Chinese attackers camped on US networks for five years

Agencies warn that Volt Typhoon is targeting infrastructure.
Feb 9 2024 9:10AM
Bootloader bug exposes Linux secure boot

Bootloader bug exposes Linux secure boot

"Complete system compromise".
Feb 8 2024 10:59AM
More woes for Ivanti as exploit activity rises

More woes for Ivanti as exploit activity rises

SSRF bug under attack.
Feb 7 2024 11:39AM
AnyDesk resets passwords after breach

AnyDesk resets passwords after breach

Some account credentials offered for sale.
Feb 5 2024 12:14PM
Ivanti security patches start to ship

Ivanti security patches start to ship

Two new vulnerabilities disclosed.
Feb 1 2024 11:18AM
GitLab patches another critical vulnerability

GitLab patches another critical vulnerability

Plus four medium-rated bugs.
Jan 30 2024 11:06AM
Apple patches 2024's first zero-day

Apple patches 2024's first zero-day

Exploited Webkit vulnerability in MacOS, iOS and iPadOS.
Jan 24 2024 12:43PM
Progress Software patches critical OpenEdge vulnerability

Progress Software patches critical OpenEdge vulnerability

Attack via malicious file uploads.
Jan 22 2024 11:52AM