vulnerability

Top 30 most exploited vulnerabilities since 2020 revealed
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
exploits

Top 30 most exploited vulnerabilities since 2020 revealed

UK, US, and Australian security agencies reveal the systems businesses need to patch now to prevent continued exploitation
29 Jul 2021
Google launches new bug bounty platform
Close up Google logo with the security lock icon isolated on black background
ethical hacking

Google launches new bug bounty platform

Vulnerability hunters will be able to improve their skills through the newly launched Bug Hunter University
28 Jul 2021
Faulty Windows 10 update breaks printing with smart cards
A broken window pane
vulnerability

Faulty Windows 10 update breaks printing with smart cards

Microsoft’s 2021 printing woes continue after several vulnerabilities were found in the Print Spooler component
26 Jul 2021
Kaseya mysteriously obtains master REvil decryptor from ‘third party’
A chained lock situated on a laptop displaying a red screen
ransomware

Kaseya mysteriously obtains master REvil decryptor from ‘third party’

The company is now working to restore access to affected customers
23 Jul 2021
Weekly threat roundup: Windows 11, Cloudflare, Google Chrome
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Windows 11, Cloudflare, Google Chrome

Pulling together the most dangerous and pressing flaws that businesses need to patch
22 Jul 2021
16-year-old flaw haunts millions of HP, Xerox and Samsung printers
An HP Pagewide Pro 452dw printer
vulnerability

16-year-old flaw haunts millions of HP, Xerox and Samsung printers

The severe vulnerability centres on a printer driver that installs itself on user’s machines, sometimes without their knowledge
21 Jul 2021
Cloudflare flaw could have led to series of supply-chain attacks
A hacker in a darkened room with digital maps and computer equipment
vulnerability

Cloudflare flaw could have led to series of supply-chain attacks

Hackers were able to exploit a path traversal vulnerability to compromise CDNJS and target thousands of sites
19 Jul 2021
Security researchers uncover more Print Spooler vulnerabilities
The Windows (start menu) key on a keyboard
vulnerability

Security researchers uncover more Print Spooler vulnerabilities

Microsoft advises customers to disable the component entirely to prevent attacks following the PrintNightmare debacle
19 Jul 2021
Weekly threat roundup: SolarWinds, Microsoft, SonicWall
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
exploits

Weekly threat roundup: SolarWinds, Microsoft, SonicWall

Pulling together the most dangerous and pressing flaws that businesses need to patch
15 Jul 2021
Microsoft makes second attempt to fix PrintNightmare flaw
A person on a laptop to depict hacking
vulnerability

Microsoft makes second attempt to fix PrintNightmare flaw

The Patch Tuesday fix is included among updates for 117 separate flaws, including four vulnerabilities that are under attack
14 Jul 2021
Schneider Electric flaws could allow remote code execution
Schneider Electric sign with a blue sky in the background
Security

Schneider Electric flaws could allow remote code execution

Chained 'ModiPwn' attack could give attackers control over industrial systems
13 Jul 2021
Microsoft warns SolarWinds customers that Serv-U is under attack
Solarwinds logo seen on the smartphone screen, with simple C attack code on the paper background.
cyber attacks

Microsoft warns SolarWinds customers that Serv-U is under attack

The beleaguered IT firm urges its customers to patch their FTP systems immediately
13 Jul 2021
Kaseya patches VSA flaws exploited in REvil ransomware attack
A security flaw depicted by a padlock with bullet holes on a circuit board
vulnerability

Kaseya patches VSA flaws exploited in REvil ransomware attack

Three now-patched vulnerabilities centred on credential leakage, cross-site scripting and 2FA bypass
12 Jul 2021
Best ransomware removal tools
A ransomware splash screen displayed on a laptop in an office
ransomware

Best ransomware removal tools

The top free and paid toolkits available right now to protect you from hackers
9 Jul 2021
Microsoft awarded $13.6 million in bug bounties over the last 12 months
Microsoft sign-in page on screen
bugs

Microsoft awarded $13.6 million in bug bounties over the last 12 months

Over 340 security researchers from 58 countries reported a total of 1,261 valid vulnerabilities between 2020-2021
9 Jul 2021
Weekly threat roundup: Kaseya, PrintNightmare, Sage
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Kaseya, PrintNightmare, Sage

Pulling together the most dangerous and pressing flaws that businesses need to patch
8 Jul 2021
Microsoft’s emergency 'PrintNightmare' patch fails to fix critical exploit
The Microsoft logo and a padlock placed on a black keyboard
vulnerability

Microsoft’s emergency 'PrintNightmare' patch fails to fix critical exploit

The RCE flaw embedded in the Print Spooler component can still be exploited when 'point and print' is enabled
8 Jul 2021
Kaspersky Password Manager generates passwords that can be 'cracked in seconds'
The Kaspersky website on a smartphone in a pocket
information security (InfoSec)

Kaspersky Password Manager generates passwords that can be 'cracked in seconds'

A now-patched vulnerability means specialised tools can game Kaspersky's method for creating passwords
7 Jul 2021
Instructions on how to exploit Windows Print Spooler accidentally leaked after research blunder
A long office desk with multiple PCs displaying Windows 10 home screen
exploits

Instructions on how to exploit Windows Print Spooler accidentally leaked after research blunder

Security firm releases a PoC exploit for a bug it thought Microsoft had already patched
2 Jul 2021
Weekly threat roundup: Cisco, Windows, Google Cloud VMs
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Cisco, Windows, Google Cloud VMs

Pulling together the most dangerous and pressing flaws that businesses need to patch
1 Jul 2021
Cisco flaw under attack after researchers publish exploit PoC
The Cisco logo as fixed onto a device
exploits

Cisco flaw under attack after researchers publish exploit PoC

Hackers are launching XSS attacks against unpatched Cisco ASA systems
28 Jun 2021
Fortinet firewall vulnerability could give hackers full control
Fortinet sign on a grey building
vulnerability

Fortinet firewall vulnerability could give hackers full control

The FBI has issued multiple warnings of hackers using flaws in Fortinet products
25 Jun 2021
Atlassian patches One-Click flaw that allowed hackers to steal user sessions
Atlassian logo on a computer screen
vulnerability

Atlassian patches One-Click flaw that allowed hackers to steal user sessions

With the stolen session, the hacker could steal sensitive information
25 Jun 2021