reader comments 31 with 0 posters participating Share this story Google researchers said on Wednesday they have linked a Barcelona, Spain-based IT company to the sale of advanced software frameworks that exploit vulnerabilities in Chrome, Firefox, and Windows Defender. Variston IT bills itself as a provider of tailor-made information security solutions, including: technology for embedded ..
reader comments 53 with 32 posters participating, including story author Share this story Apple on Monday patched a high-severity zero-day vulnerability that gives attackers the ability to remotely execute malicious code that runs with the highest privileges inside the operating system kernel of fully up-to-date iPhones and iPads. In an advisory, Apple said that CVE-2022-42827, ..
reader comments 27 with 23 posters participating Share this story Microsoft late Thursday confirmed the existence of two critical vulnerabilities in its Exchange application that have already compromised multiple servers and pose a serious risk to an estimated 220,000 more around the world. The currently unpatched security flaws have been under active exploit since early ..
Getty Images | NurPhoto reader comments 22 with 21 posters participating Share this story Google engineers have issued an emergency update for the Chrome browser to fix a high-severity vulnerability that can be exploited with code that’s already available in the wild. The vulnerability, which Google disclosed on Friday, is the result of “insufficient data ..
reader comments 31 with 26 posters participating Share this story A secretive seller of cyberattack software recently exploited a previously unknown Chrome vulnerability and two other zero-days in campaigns that covertly infected journalists and other targets with sophisticated spyware, security researchers said. CVE-2022-2294, as the vulnerability is tracked, stems from memory corruption flaws in Web ..
Getty Images reader comments 3 with 3 posters participating Share this story Microsoft said on Tuesday that hackers operating in China exploited a zero-day vulnerability in a SolarWinds product. According to Microsoft, the hackers were, in all likelihood, targeting software companies and the US Defense industry. SolarWinds disclosed the zero-day on Monday, after receiving notification ..
reader comments 29 with 24 posters participating Share this story SolarWinds, the company at the center of a supply chain attack that compromised nine US agencies and 100 private companies, is scrambling to contain a new security threat: a critical zero-day vulnerability in its Serv-U product line. Microsoft discovered the exploits and privately reported them ..
reader comments 29 with 22 posters participating Share this story Network security provider SonicWall said on Monday that hackers are exploiting a critical zero-day vulnerability in one of the devices it sells. The security flaw resides in the Secure Mobile Access 100 series, SonicWall said in an advisory updated on Monday. The vulnerability, which affects ..
reader comments 35 with 25 posters participating, including story author Share this story Telecoms and data-center operators take note: attackers are actively trying to exploit a high-severity zeroday vulnerability in Cisco networking devices, the company warned over the weekend. The security flaw resides in Cisco’s iOS XR Software, an operating system for carrier-grade routers and ..
reader comments 37 with 30 posters participating Share this story Apple is disputing the accuracy of this week’s report that found attackers have been exploiting an unpatched iOS bug that allowed them to take full control of iPhones. San Francisco-based security firm ZecOps said on Wednesday that attackers had used the zero-day exploit against at ..