Security researchers say the three new zero-days are more than likely commercial spyware vendors exploiting them in the wild.

Security pros urged to patch zero-day immediately Mozilla's Firefox browser and Thunderbird email client. Google also issued a patch for the vulnerability in Chrome on Monday.

Mopria, Cisco, Seimens and Schneider, Word, AP Stylebook, DarkGate, GitHub, Chrome, More News, and Jason Wood on the Security Weekly News.

AI vs. Hunter Thompson, Sandstorm, BGP, Earth Estries, DOE, VMWare Aria, Key Group, DSA, Aaran Leyland, and More on this edition of the Security Weekly News.

Security teams are encouraged to quickly patch one of the two bugs that is a critical authentication bypass vulnerability.

This month’s Patch Tuesday also saw Microsoft fix a vulnerability it warned last month was being exploited in the wild.

In response to Tenable CEO Amit Yoran calling it “grossly irresponsible” for taking over four months to fully address the issue, Microsoft said it needed to balance speed and safety.

Ubuntu patched the high-severity vulnerabilities on July 24 and recommends that users update their Ubuntu kernels.