Tag: zero-day
-
Microsoft Discloses 4 Zero-Days in September Update
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/application-security/microsoft-discloses-4-zero-days-in-september-update
-
Microsoft confirms second 0-day exploited by Void Banshee APT (CVE-2024-43461)
by
in SecurityNewsCVE-2024-43461, a spoofing vulnerability affecting Windows MSHTML a software component used by various apps for rendering render web pages on Windows … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/09/16/cve-2024-43461-exploited/
-
Windows MSHTML Zero-Day Vulnerability Exploited In The Wild
by
in SecurityNewsAdobe released eight security updates in September 2024, addressing 28 vulnerabilities in various products, as ColdFusion received a critical patch to… First seen on gbhackers.com Jump to article: gbhackers.com/windows-mshtml-zero-day-exploit/
-
Windows vulnerability abused braille spaces in zero-day attacks
by
in SecurityNewsA recently fixed Windows MSHTML spoofing vulnerability tracked under CVE-2024-43461 is now marked as previously exploited after it was used in attacks… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/windows-vulnerability-abused-braille-spaces-in-zero-day-attacks/
-
Microsoft Says Recent Windows Vulnerability Exploited as Zero-Day
by
in SecurityNewsMicrosoft warns that a recently patched Windows vulnerability was exploited in the wild as a zero-day prior to July 2024. The post Microsoft Says Rece… First seen on securityweek.com Jump to article: www.securityweek.com/microsoft-says-recent-windows-vulnerability-exploited-as-zero-day/
-
Week in review: Veeam Backup Replication RCE could soon be exploited, Microsoft fixes 4 0-days
by
in SecurityNewsHere’s an overview of some of last week’s most interesting news, articles, interviews and videos: Veeam Backup Replication RCE flaw may soon be levera… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/09/15/week-in-review-veeam-backup-replication-rce-could-soon-be-exploited-microsoft-fixes-4-0-days/
-
Patch Tuesday for September 2024: Microsoft Catches Four Zero-Day Vulnerabilities
by
in SecurityNewsFirst seen on techrepublic.com Jump to article: www.techrepublic.com/article/patch-tuesday-september-24/
-
Windows 0-day was exploited by North Korea to install advanced rootkit
by
in SecurityNewsFirst seen on arstechnica.com Jump to article: arstechnica.com/
-
In Other News: Possible Adobe Reader Zero-Day, Hijacking Mobi TLD, WhatsApp View Once Exploit
by
in SecurityNewsNoteworthy stories that might have slipped under the radar: a possible Adobe Reader zero-day, researchers mistakenly hijack .mobi TLD, and an exploite… First seen on securityweek.com Jump to article: www.securityweek.com/in-other-news-possible-adobe-reader-zero-day-hijacking-mobi-tld-whatsapp-view-once-exploit/
-
Chinese government hackers targeted US internet providers with zero-day exploit, researchers say
by
in SecurityNews
Tags: china, exploit, government, group, hacker, Internet, service, software, vulnerability, zero-dayA group of hackers linked to the Chinese government used a previously unknown vulnerability in software to target U.S. internet service providers, sec… First seen on techcrunch.com Jump to article: techcrunch.com/2024/08/27/chinese-government-hackers-targeted-u-s-internet-providers-with-zero-day-exploit-researchers-say/
-
Microsoft Fixes Four Actively Exploited Zero-Days
by
in SecurityNewsFirst seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/microsoft-fixes-four-actively/
-
Microsoft fixes at least four zero-days in September Patch Tuesday
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/microsoft-fixes-at-least-four-zero-days-in-september-patch-tuesday
-
Patch Tuesday: Microsoft Fixes Multiple Zero-Days, Other Vulns
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/brief/patch-tuesday-microsoft-fixes-multiple-zero-days-other-vulns
-
Adobe fixes Acrobat Reader zero-day with public PoC exploit
by
in SecurityNewsA cybersecurity researcher is urging users to upgrade Adobe Acrobat Reader after a fix was released yesterday for a remote code execution zero-day wit… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/adobe-fixes-acrobat-reader-zero-day-with-public-poc-exploit/
-
Microsoft Patch Tuesday security updates for September 2024 addressed four actively exploited zero-days
Microsoft Patch Tuesday security updates for September 2024 addressed 79 flaws, including four actively exploited zero-day flaws. Microsoft Patch Tues… First seen on securityaffairs.com Jump to article: securityaffairs.com/168279/security/microsoft-patch-tuesday-sept-2024.html
-
Microsoft’s September 2024 Patch Tuesday Addresses 4 Zero-Days, 79 Vulnerabilities
by
in SecurityNewsOn September 10, 2024, Microsoft released its latest round of security updates as part of its monthly Patch Tuesday program. This month’s updates addr… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/microsofts-september-2024-patch-tuesday-addresses-4-zero-days-79-vulnerabilities/
-
Microsoft September 2024 Patch Tuesday Fixes 79 Flaws, Including 4 Zero-Days
by
in SecurityNewsFirst seen on hackread.com Jump to article: hackread.com/microsoft-september-2024-patch-tuesday-flaws-update/
-
Adobe patches Acrobat bug, neglects to mention whole zero-day, exploit thing
by
in SecurityNewsFirst seen on theregister.com Jump to article: www.theregister.com/2024/09/12/adobe_acrobat_0day/
-
Microsoft fixes Windows Smart App Control zero-day exploited since 2018
First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-fixes-windows-smart-app-control-zero-day-exploited-since-2018/
-
Microsoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flaws
Today is Microsoft’s September 2024 Patch Tuesday, which includes security updates for 79 flaws, including four actively exploited and one publicly di… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-september-2024-patch-tuesday-fixes-4-zero-days-79-flaws/
-
North Korea’s ‘Citrine Sleet’ APT Exploits Zero-Day Chromium Bug
by
in SecurityNewsMicrosoft warned that the DPRK’s latest innovative tack chains together previously unknown browser issues, then adds a rootkit to the mix to gain deep… First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/north-korean-apt-exploits-novel-chromium-windows-bugs-steal-crypto
-
Microsoft fixes 4 exploited zero-days and a code defect that nixed earlier security fixes
September 2024 Patch Tuesday is here and Microsoft has delivered 79 fixes, including those for a handful of zero-days (CVE-2024-38217, CVE-2024-38226,… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/09/10/cve-2024-38217-cve-2024-43491/
-
Microsoft Fixes Four 0-Days, One Exploited for SIX YEARS
by
in SecurityNewsFirst seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/patch-tuesday-september-2024-richixbw/
-
Chinese APT Exploits Versa Networks Zero-Day Flaw
by
in SecurityNewsThe vulnerability impacts versions of Versa Director prior to 22.1.4, and Versa Networks recommends that impacted users update to the fixed version as… First seen on duo.com Jump to article: duo.com/decipher/chinese-apt-exploits-versa-networks-zero-day-flaw
-
North Korean Hackers Deploy FudModule Rootkit via Chrome Zero-Day Exploit
by
in SecurityNewsA recently patched security flaw in Google Chrome and other Chromium web browsers was exploited as a zero-day by North Korean actors in a campaign des… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/north-korean-hackers-deploy-fudmodule.html
-
CCTV Zero-Day Exposes Critical Infrastructure to Mirai Botnet
by
in SecurityNewsFirst seen on darkreading.com Jump to article: www.darkreading.com/ics-ot-security/cctv-zero-day-targeted-by-mirai-botnet-campaign
-
Unpatched AVTECH IP Camera Flaw Exploited by Hackers for Botnet Attacks
A years-old high-severity flaw impacting AVTECH IP cameras has been weaponized by malicious actors as a zero-day to rope them into a botnet.CVE-2024-7… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/unpatched-avtech-ip-camera-flaw.html
-
APT60 Group Exploit WPS Office Flaw to Deploy SpyGlace Backdoor
by
in CISOA South Korea-aligned cyber espionage has been linked to the zero-day exploitation of a now-patched critical remote code execution flaw in Kingsoft WP… First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/apt-c-60-group-exploit-wps-office-flaw.html
-
Velvet Ant Exploits Cisco Zero-Day Flaw For System Control
by
in SecurityNewsIn light of recent cybercrime events, details pertaining to the Cisco zero-day flaw that has now been patched have emerged. As per the details, the fl… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/velvet-ant-exploits-cisco-zero-day-flaw-for-system-control/
-
Chinese Volt Typhoon Exploits Versa Director Flaw, Targets U.S. and Global IT Sectors
The China-nexus cyber espionage group tracked as Volt Typhoon has been attributed with moderate confidence to the zero-day exploitation of a recently … First seen on thehackernews.com Jump to article: thehackernews.com/2024/08/chinese-volt-typhoon-exploits-versa.html