September 2, SecurityWeek – (International) Apple patches spyware-related zero-days in OS X, Safari. Apple released patches resolving three zero-day vulnerabilities, dubbed Trident affecting its Mac operating system (OS) X including OS X Yosemite, OS X El Capitan, and in Safari for OS X Mavericks that were exploited by Pegasus surveillance software to spy on individuals via iOS devices and could lead to kernel memory disclosure, applications executing arbitrary code with kernel privileges, and arbitrary code execution when a user visits a maliciously crafted Website. Source
September 1, Softpedia – (International) Google fixes Nexus 5X flaw that allowed attackers to dump phone memory via USB. Google patched a vulnerability affecting Android images deployed on LG Nexus 5X devices with the Android Debug Bridge (ADB) feature turned on after researchers from IBM’s X-Force team discovered the flaw could allow an attacker to infect a victim’s device with malware that exploits the vulnerability and dumps the phone’s memory and extracts sensitive information via a universal serial bus (USB) port. Source
Above Reprinted from the USDHS Daily Open Source Infrastructure Report