vulnerability

Graphic showing a red unlocked padlock surrounded by blue locked padlocks

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmsz { display: none !important; }

vulnerability

Weekly threat roundup: IBM, VMware and Python

Pulling together the most dangerous and pressing flaws that businesses need to patch

25 Feb 2021

The VMware website as seen through a magnifying glass against a monitor

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmt0 { display: none !important; }

vulnerability

VMware patches critical ESXi and vSphere Client vulnerabilities

These include a 9.8-rated bug that hackers can exploit to execute remote commands with unrestricted privileges

24 Feb 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmt1 { display: none !important; }

vulnerability

Weekly threat roundup: SolarWinds-style hack, macOS Big Sur, Telegram

Pulling together the most dangerous and pressing flaws that businesses need to patch

18 Feb 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmt2 { display: none !important; }

bugs

Apple fixes macOS Big Sur bug that caused irretrievable data loss

The macOS upgrade installer failed to check if you had enough free space available, causing major issues if you didn’t

17 Feb 2021

Image of a cyber criminal using several computers in a dark room

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmt3 { display: none !important; }

cyber attacks

France uncovers SolarWinds-esque cyber attack targeting Centreon

Hackers infiltrated the systems of several organisations in 2017 by compromising the enterprise IT platform

16 Feb 2021

The Blue Screen of Death (BSOD) error screen as shown on a Samsung monitor in an office

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmt4 { display: none !important; }

bugs

Microsoft releases emergency fix for Patch Tuesday Wi-Fi glitch

Users report BSOD system crashes when trying to connect to Wi-Fi through WPA3

12 Feb 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmt5 { display: none !important; }

vulnerability

Weekly threat roundup: Zero-days in Windows, Adobe, Google Chrome

Pulling together the most dangerous and pressing flaws that businesses need to patch

11 Feb 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmt6 { display: none !important; }

vulnerability

Multiple TCP/IP stack flaws could leave millions of devices open to attack

The stacks are susceptible to Mitnick attacks

10 Feb 2021

Plasters over a hard disc drive to symbolise patch management

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmt7 { display: none !important; }

vulnerability

Microsoft patches actively exploited Windows zero-day flaw

The threat has been fixed alongside 55 other bugs in the latest Patch Tuesday round of fixes

10 Feb 2021

An employee on the phone while his computer screen shows "cyber attack" warning

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmt8 { display: none !important; }

application programming interface (API)

90% of businesses experienced API security vulnerabilities in 2020

Report finds that more than a quarter of organizations haven't yet launched an API security strategy

5 Feb 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmt9 { display: none !important; }

WannaCry

What is WannaCry?

The full story behind one of the worst ransomware outbreaks in history

4 Feb 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmta { display: none !important; }

vulnerability

Weekly threat roundup: macOS, VMware and SolarWinds

Pulling together the most dangerous and pressing flaws that businesses need to patch

4 Feb 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmtb { display: none !important; }

vulnerability

Beleaguered SolarWinds hit with fresh vulnerabilities

Three severe flaws across Orion and Serv-U FTP can be exploited to launch remote code execution attacks and steal data

3 Feb 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmtc { display: none !important; }

vulnerability

Weekly threat roundup: Apple, SonicWall, Linux Sudo

Pulling together the most dangerous and pressing flaws that businesses need to patch

28 Jan 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmtd { display: none !important; }

enterprise security

Patch management vs vulnerability management

What exactly is patch management, and why should IT pros sit up and take notice of doing it properly?

27 Jan 2021

The iPhone 12 showing the password screen on a coffee table beside a cup and saucer

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmte { display: none !important; }

exploits

Hackers are actively exploiting three Apple iOS flaws

Apple releases fixes for privilege escalation and remote code execution bugs in iOS, iPadOS and tvOS

27 Jan 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmtf { display: none !important; }

data protection

TikTok vulnerability exposed private user data

Security researchers have discovered that the app's 'Find Friends' feature allows hackers to access user details

26 Jan 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmtg { display: none !important; }

ransomware

Best ransomware removal tools

The top free and paid toolkits available right now to protect you from hackers

22 Jan 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmth { display: none !important; }

vulnerability

Weekly threat roundup: SAP, Windows 10, Chrome

Pulling together the most dangerous and pressing flaws that businesses need to patch

21 Jan 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmti { display: none !important; }

vulnerability

Weekly threat roundup: Microsoft Defender, Adobe, Mimecast

Pulling together the most dangerous and pressing flaws that businesses need to patch

14 Jan 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmtj { display: none !important; }

vulnerability

Weekly threat roundup: Zyxel, Samsung Galaxy, Windows 10

Pulling together the most dangerous and pressing flaws that businesses need to patch

7 Jan 2021

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmtk { display: none !important; }

zero-day exploit

HPE warns of a critical zero-day flaw in server management software

There's a workaround for Windows customers, but nothing for Linux admins

18 Dec 2020

.imgHideOnJavaScriptDisabled_d8xx1qklrnlmtl { display: none !important; }

vulnerability

Golang XML parser vulnerability could enable SAML authentication bypass

Three critical bugs have been discovered with no patch available at present

15 Dec 2020

vulnerability

Weekly threat roundup: IBM, VMware and Python

VMware patches critical ESXi and vSphere Client vulnerabilities

Weekly threat roundup: SolarWinds-style hack, macOS Big Sur, Telegram

Apple fixes macOS Big Sur bug that caused irretrievable data loss

France uncovers SolarWinds-esque cyber attack targeting Centreon

Microsoft releases emergency fix for Patch Tuesday Wi-Fi glitch

Get the IT Pro newsletter

Get the free daily newsletter from IT Pro, delivering the latest news, reviews, insights and case studies

Weekly threat roundup: Zero-days in Windows, Adobe, Google Chrome

Multiple TCP/IP stack flaws could leave millions of devices open to attack

Microsoft patches actively exploited Windows zero-day flaw

90% of businesses experienced API security vulnerabilities in 2020

What is WannaCry?

Weekly threat roundup: macOS, VMware and SolarWinds

Beleaguered SolarWinds hit with fresh vulnerabilities

Weekly threat roundup: Apple, SonicWall, Linux Sudo

Patch management vs vulnerability management

Hackers are actively exploiting three Apple iOS flaws

TikTok vulnerability exposed private user data

Best ransomware removal tools

Weekly threat roundup: SAP, Windows 10, Chrome

Weekly threat roundup: Microsoft Defender, Adobe, Mimecast

Weekly threat roundup: Zyxel, Samsung Galaxy, Windows 10

HPE warns of a critical zero-day flaw in server management software

Golang XML parser vulnerability could enable SAML authentication bypass