Critical Browser & OS Updates Roll Out; Apple, Google, Microsoft Patch Zero-Days
This week brings crucial updates for several popular browsers and operating systems. Google Chrome and Microsoft Edge will receive patches, while Apple and Microsoft address critical vulnerabilities in their software.
Google has announced updates for Chrome and Chromium-based browsers, including Microsoft Edge, to address multiple security issues. Among these is the elevation of privilege vulnerability CVE-2025-21391, which could potentially allow attackers to delete files on targeted systems.
Apple has released iOS 18.3.1 to fix a zero-day vulnerability (CVE-2025-24200) that was actively being exploited in attacks. Meanwhile, Microsoft has issued security updates to fix 56 vulnerabilities in Windows and supported software, including the patch for CVE-2025-21377, which could allow attackers to steal NTLMv2 hashes with minimal user interaction.
Adobe has issued security updates fixing 45 vulnerabilities across multiple products. Notably, two zero-day flaws have been patched: CVE-2025-21418, a buffer overflow vulnerability being actively exploited with low attack complexity, and CVE-2025-21391, an elevation of privilege vulnerability in Windows Storage.
Users are advised to install these updates as soon as possible to protect against potential security threats. Additionally, Microsoft has started bundling Copilot AI with Microsoft 365, now rebranded as Microsoft 365 Copilot, and increased prices by 8%.
