Exploits and vulnerabilities

Zoom zero-day discovery makes calls safer, hackers $200,000 richer - White hat hackers have demonstrated a Remote Code Execution attack against Zoom at the Pwn2Own event.
SAP warns of malicious activity targeting unpatched systems - A jointly-released report from Onapsis and SAP has warned that cybercriminals are taking advantage of a failure to patch.
The npm netmask vulnerability explained so you can actually understand it - A vulnerability in the popular npm netmask library has caused a lot of discussion and confusion. Let's try to make it simple.
ProxyLogon PoCs trigger a game of whack-a-mole - Microsoft and others are trying to keep working ProxyLogon PoCs out of the hands of cybercriminals and script-kiddies.
Update now! Chrome fix patches in-the-wild zero-day - Google has released a patch for yet another vulnerability in Chrome's audio component after it was exploited in the wild.
Patch now! Exchange servers attacked by Hafnium zero-days - Microsoft has released updates to deal with 4 zero-day vulnerabilities being used in an attack chain aimed at users of Exchange Server.
Update now! Chrome patches zero-day that was exploited in the wild - The successfully exploited vulnerability is suspected of being used in targeted attacks against security researchers.
RDP abused for DDoS attacks - RDP is being abused to amplify DDoS attacks. Don't let your RDP ports become part of the problem.
DNSpooq bugs haunt dnsmasq - If there's something strange in your DNS cache, who you gonna call?

Select your language