Lucene search
K

8 matches found

The Hacker News
The Hacker News
added 2025/08/25 12:17 p.m.26 views

⚡ Weekly Recap: Password Manager Flaws, Apple 0-Day, Hidden AI Prompts, In-the-Wild Exploits & More

Cybersecurity today moves at the pace of global politics. A single breach can ripple across supply chains, turn a software flaw into leverage, or shift who holds the upper hand. For leaders, this means defense isn't just a matter of firewalls and patches—it's about strategy. The strongest...

10CVSS9.9AI score0.9951EPSS
Exploits20
Wiz blog
Wiz blog
added 2025/07/06 12:45 p.m.13 views

Critical vulnerabilities in NetScaler ADC exploited in-the-wild: everything you need to know

Detect and mitigate CVE-2025-5349, CVE-2025-5777, and CVE-2025-6543, Citrix Netscaler ADC and Gateway vulnerabilities being exploited in the wild. Organizations should patch urgently...

9.8CVSS8.4AI score0.9987EPSS
Exploits21
Rapid7 Blog
Rapid7 Blog
added 2025/02/11 9:30 p.m.9 views

Patch Tuesday - February 2025

Microsoft is addressing 56 vulnerabilities this February 2025 Patch Tuesday. Microsoft has evidence of in-the-wild exploitation for two of the vulnerabilities published today, which is reflected in CISA KEV. Microsoft is aware of public disclosure for two other vulnerabilities. This is now the...

8.8CVSS8.5AI score0.01547EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/08/31 3:27 a.m.57 views

New Microsoft Exchange 'ProxyToken' Flaw Lets Attackers Reconfigure Mailboxes

Details have emerged about a now-patched security vulnerability impacting Microsoft Exchange Server that could be weaponized by an unauthenticated attacker to modify server configurations, thus leading to the disclosure of Personally Identifiable Information PII. The issue, tracked as...

7.5CVSS0.9AI score0.97502EPSS
Exploits2
Malwarebytes
Malwarebytes
added 2021/07/19 9:43 a.m.60 views

A week in security (July 12 – July 18)

Last week on Malwarebytes Labs: DNS-over-HTTPS takes another small step towards global domination Nope, that isn’t Elon Musk, and he isn’t offering a free Topmist Dust watch either Four in-the-wild exploits, 13 critical patches headline bumper Patch Tuesday Is crypto’s criminal rollercoaster...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2021/07/14 11:56 a.m.522 views

Four in-the-wild exploits, 13 critical patches headline bumper Patch Tuesday

The list of July 2021 Patch Tuesday updates looks endless. 117 patches with no less than 42 CVEs assigned to them that have FAQs, mitigations details or workarounds listed for them. Looking at the urgency levels Microsoft has assigned to them, system administrators have their work cut out for the...

10CVSS9.8AI score0.99999EPSS
Exploits58
ThreatPost
ThreatPost
added 2021/04/16 12:57 p.m.82 views

Google Project Zero Cuts Bug Disclosure Timeline to a 30-Day Grace Period

Google Project Zero will now give organizations a 30-day grace period to patch zero-day flaws it discovers in a new disclosure policy revealed this week aimed at speeding up the time it takes for patches to be adopted. Known for discovering a number of high-profile zero days—in Google’s own...

6.8AI score
Exploits0References11
ThreatPost
ThreatPost
added 2020/07/09 6:18 p.m.113 views

Zoom Zero-Day Allows RCE, Patch on the Way

UPDATE A newly discovered bug in the Zoom Client for Windows could allow remote code-execution, according to researchers at 0patch, which disclosed the existence of the flaw on Thursday after pioneering a proof-of-concept exploit for it. The issue was confirmed for Threatpost by a Zoom...

8.2AI score
Exploits0References8
Rows per page
Query Builder