exploits

Weekly threat roundup: Microsoft Patch Tuesday, HP Omen, Apple
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
exploits

Weekly threat roundup: Microsoft Patch Tuesday, HP Omen, Apple

Pulling together the most dangerous and pressing flaws that businesses need to patch
16 Sep 2021
Microsoft patches Internet Explorer zero-day under active attack
Bug surrounding by computer code and jargon
vulnerability

Microsoft patches Internet Explorer zero-day under active attack

The latest wave of Patch Tuesday fixes also included several updates to address the Print Spooler component in Windows
15 Sep 2021
Apple patches zero-day flaw abused by infamous NSO exploit
A close-up of the Apple iPhone 12 mini's notch
exploits

Apple patches zero-day flaw abused by infamous NSO exploit

The ForcedEntry flaw affects all Apple devices and allows hackers to compromise systems without any user interaction
14 Sep 2021
Weekly threat roundup: Atlassian, Microsoft Office, Zoho ManageEngine
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Atlassian, Microsoft Office, Zoho ManageEngine

Pulling together the most dangerous and pressing flaws that businesses need to patch
9 Sep 2021
Hackers exploit Windows zero-day to target users with Office files
The Microsoft Word software on a computer screen
vulnerability

Hackers exploit Windows zero-day to target users with Office files

This ‘reliable and dangerous’ flaw is being abused to launch remote code execution attacks against specific targets
8 Sep 2021
US officials warn of “mass exploitation” of Atlassian Confluence flaw
The Atlassian logo on the website seen through a magnifying glass
hacking

US officials warn of “mass exploitation” of Atlassian Confluence flaw

Hackers can exploit the workplace collaboration platform to execute arbitrary code remotely
6 Sep 2021
Weekly threat roundup: Exchange Server, AMD CPUs, Azure Cosmos DB
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Exchange Server, AMD CPUs, Azure Cosmos DB

Pulling together the most dangerous and pressing flaws that businesses need to patch
2 Sep 2021
Microsoft Exchange Server flaw lets attackers misconfigure mailboxes
A laptop on a table with the Microsoft Exchange logo displayed
vulnerability

Microsoft Exchange Server flaw lets attackers misconfigure mailboxes

Microsoft has patched the ProxyToken vulnerability before any evidence of exploitation has emerged
31 Aug 2021
Weekly threat roundup: Ethereum, Razer mice, Cisco
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Ethereum, Razer mice, Cisco

Pulling together the most dangerous and pressing flaws that businesses need to patch
26 Aug 2021
Weekly threat roundup: Blackberry QNX, Cisco VPNs, Fortinet firewalls
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Blackberry QNX, Cisco VPNs, Fortinet firewalls

Pulling together the most dangerous and pressing flaws that businesses need to patch
19 Aug 2021
What's behind the explosion in zero-day exploits?
A figure in a hooded jumper against a red and blue background
zero-day exploit

What's behind the explosion in zero-day exploits?

Projections show the industry will detect almost three times as many exploits in 2021 as were found last year
3 Aug 2021
Top 30 most exploited vulnerabilities since 2020 revealed
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
exploits

Top 30 most exploited vulnerabilities since 2020 revealed

UK, US, and Australian security agencies reveal the systems businesses need to patch now to prevent continued exploitation
29 Jul 2021
Weekly threat roundup: Windows 11, Cloudflare, Google Chrome
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Windows 11, Cloudflare, Google Chrome

Pulling together the most dangerous and pressing flaws that businesses need to patch
22 Jul 2021
Weekly threat roundup: SolarWinds, Microsoft, SonicWall
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
exploits

Weekly threat roundup: SolarWinds, Microsoft, SonicWall

Pulling together the most dangerous and pressing flaws that businesses need to patch
15 Jul 2021
Microsoft makes second attempt to fix PrintNightmare flaw
A person on a laptop to depict hacking
vulnerability

Microsoft makes second attempt to fix PrintNightmare flaw

The Patch Tuesday fix is included among updates for 117 separate flaws, including four vulnerabilities that are under attack
14 Jul 2021
Microsoft warns SolarWinds customers that Serv-U is under attack
Solarwinds logo seen on the smartphone screen, with simple C attack code on the paper background.
cyber attacks

Microsoft warns SolarWinds customers that Serv-U is under attack

The beleaguered IT firm urges its customers to patch their FTP systems immediately
13 Jul 2021
Weekly threat roundup: Kaseya, PrintNightmare, Sage
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Kaseya, PrintNightmare, Sage

Pulling together the most dangerous and pressing flaws that businesses need to patch
8 Jul 2021
Microsoft’s emergency 'PrintNightmare' patch fails to fix critical exploit
The Microsoft logo and a padlock placed on a black keyboard
vulnerability

Microsoft’s emergency 'PrintNightmare' patch fails to fix critical exploit

The RCE flaw embedded in the Print Spooler component can still be exploited when 'point and print' is enabled
8 Jul 2021
Instructions on how to exploit Windows Print Spooler accidentally leaked after research blunder
A long office desk with multiple PCs displaying Windows 10 home screen
exploits

Instructions on how to exploit Windows Print Spooler accidentally leaked after research blunder

Security firm releases a PoC exploit for a bug it thought Microsoft had already patched
2 Jul 2021
Weekly threat roundup: Cisco, Windows, Google Cloud VMs
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Cisco, Windows, Google Cloud VMs

Pulling together the most dangerous and pressing flaws that businesses need to patch
1 Jul 2021
Cisco flaw under attack after researchers publish exploit PoC
The Cisco logo as fixed onto a device
exploits

Cisco flaw under attack after researchers publish exploit PoC

Hackers are launching XSS attacks against unpatched Cisco ASA systems
28 Jun 2021
Weekly threat roundup: Microsoft Teams, iOS, Samsung Galaxy
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Microsoft Teams, iOS, Samsung Galaxy

Pulling together the most dangerous and pressing flaws that businesses need to patch
17 Jun 2021
Critical supply chain flaw exposes IoT cameras to cyber attack
Close-up of an IoT-enabled CCTV camera
vulnerability

Critical supply chain flaw exposes IoT cameras to cyber attack

Hackers can exploit the vulnerability in ThroughTek's P2P SDK to spy on video feeds and steal data
16 Jun 2021