zero-day exploit
Millions of WordPress sites targeted by File Manager zero-day
Millions of WordPress sites targeted by File Manager zero-day
A dramatic surge in attacks saw one million sites targeted on 4 September alone
7 Sep 2020
Sophos fixes firewall bug being actively exploited in SQL injection attacks
Sophos fixes firewall bug being actively exploited in SQL injection attacks
Customised 'Asnarok’ malware targeted virtual and physical firewalls to attempt to exfiltrate user information
27 Apr 2020
Mozilla fixes two Firefox zero-days being actively exploited
Mozilla fixes two Firefox zero-days being actively exploited
Critical vulnerabilities allow attackers to execute arbitrary code or trigger crashes
6 Apr 2020
Mozilla fixes Firefox zero-day being actively exploited
Mozilla fixes Firefox zero-day being actively exploited
The US cyber security agency has warned the vulnerability is being used to take control of users’ machines
9 Jan 2020
Tenable: There are far more dangerous threats than zero-days
Tenable: There are far more dangerous threats than zero-days
‘If you’re scared of zero-days, you don’t know what you’re talking about’ claims Tenable
7 Nov 2019
What is ethical hacking? White hat hackers explained
What is ethical hacking? White hat hackers explained
Not all hackers are motivated by greed - some of them use their powers for good
11 Jul 2019
Apple rolls out its own fix for Zoom zero-day
Apple rolls out its own fix for Zoom zero-day
The exploit allowed websites to forcibly activate a user's webcam
11 Jul 2019
How Mr. Robot ‘fudged’ its hacks to protect the public
How Mr. Robot ‘fudged’ its hacks to protect the public
Showrunners debated over how accurate to make the show’s exploits
5 Jun 2019
WhatsApp call hack installs spyware on users’ phones
WhatsApp call hack installs spyware on users’ phones
iPhones and Android devices are vulnerable to security flaw – WhatsApp recommends immediate app update
14 May 2019
The Equifax Effect: Explaining the disaster
The Equifax Effect: Explaining the disaster
We take a deep-dive into how the credit agency got so much so wrong
15 Mar 2019
Chrome exploit worked hand-in-hand with Windows bug
Chrome exploit worked hand-in-hand with Windows bug
Google has only seen the vulnerabilities actively exploited on 32-bit Windows 7 machines
8 Mar 2019
Internet Explorer and Exchange zero-days get patched
Internet Explorer and Exchange zero-days get patched
Exploit code is known to be in circulation for both vulnerabilities
13 Feb 2019
Three key pillars of threat visibility
Three key pillars of threat visibility
For a company to see what threats they’re up against, they need visibility into all the data available
28 Jan 2019
Researchers ‘break’ Edge with zero-day remote code exploit
Researchers ‘break’ Edge with zero-day remote code exploit
Proof-of-concept shows researchers opening the Chrome landing page from Edge via Firefox
5 Nov 2018
Stuxnet is back, Iran admits
Stuxnet is back, Iran admits
The infamous malware is back, and it's "more violent, more advanced and more sophisticated" than ever
1 Nov 2018
Zero Day Initiative disclosed unpatched Microsoft Jet flaw
Zero Day Initiative disclosed unpatched Microsoft Jet flaw
All supported versions of Windows affected by remote code execution bug
21 Sep 2018
US charges North Korean hacker with WannaCry and Sony hack
US charges North Korean hacker with WannaCry and Sony hack
A North Korean programmer is accused of conducting cyber attacks on behalf of the government
7 Sep 2018
Samsung Galaxy S7 vulnerable to Meltdown hack
Samsung Galaxy S7 vulnerable to Meltdown hack
The flaw potentially effects tens of millions of users that still own the S7
8 Aug 2018
Pretty Good Privacy isn't broken, says inventor
Pretty Good Privacy isn't broken, says inventor
Phil Zimmerman and ProtonMail criticise EFF's advice that users delete PGP to deal with EFAIL
25 May 2018
Intel delays patching new Spectre-like chip flaws
Intel delays patching new Spectre-like chip flaws
Patches for all operating systems and virtual machines may not be ready until later this year - report
9 May 2018
Microsoft launches speculative attack bounty programme
Microsoft launches speculative attack bounty programme
Firm offers $250,000 reward for new side-channel attacks
15 Mar 2018
Intel didn’t warn US-CERT of Meltdown and Spectre
Intel didn’t warn US-CERT of Meltdown and Spectre
Letters to lawmakers say Intel took six months to tell the US government about the exploits
26 Feb 2018
Google’s Project Zero team discloses Edge browser bug
Google’s Project Zero team discloses Edge browser bug
Microsoft didn't make the 90-day patch window, so Project Zero shared details with the world
20 Feb 2018