vulnerabilities
-
Cybersecurity
SAP systems are getting breached as attackers wake up to CVSS 10 bug
Exploits have circulated since February.
Read More » -
Cybersecurity
Patch Tuesday: Exploited Windows 0day, zero-click pre-auth RCE vuln in RPC
Those 700,000 folks with RPC exposed to the internet should probably...
Read More » -
Cybersecurity
Zyxel, VMware, F5 vulnerabilities under attack: Updated CISA database
Don't put that stuff on the public internet, kids.
Read More » -
Cybersecurity
Hyperscalers, telcos exposing BIG-IP to the internet as pre-auth RCE vulnerability drops
Just block iControl REST access through the management interface for starters...
Read More » -
Read This
The 10 most-exploited vulnerabilities of 2021: Not patched? Likely pwned…
Attackers continue to accelerate their weaponisation of newly-discovered flaws, the Five Eyes list of most-exploited vulnerabilities of 2021 shows. Contrary…
Read More » -
Cybersecurity
NSA reports 1 bug under attack, Chinese firm 36, as Patch Tuesday lands with 0days, drama
It’s back, it’s big, and it’s bad. April Patch Tuesday brings 145 vulnerability fixes from Microsoft — the highest number…
Read More » -
Cybersecurity
Thousands of VMware customers publicly exposed to pre-auth RCE as exploit reproduced
VMware Cloud Foundation, NSX-T, vRealize Suite, VMware Cloud suites, vRealize Automation, vRealize Log Insight all...
Read More » -
Cybersecurity
A critical Sophos firewall RCE bug is under active attack. Patch now.
Pre-auth RCE has been exploited in the wild...
Read More » -
Read This
CrowdStrike names Turkey and Colombia as significant new sources of cyber-attacks
New state actors, labelled Wolf and Ocelot, identified in threat report
Read More » -
Cybersecurity
Critical bug in ubiquitous Java framework sets off an internet cluster bomb
AWS, Red Hat, VMware, more affected with pre-auth RCE exploits circulating
Read More »