Exploits
Discover expert analysis on exploits with news, features and insights from the team at IT Pro.
-
Lenovo ThinkPads vulnerable to privilege escalation exploit, researchers warn
News A component running on the popular business computers is vulnerable to a chained exploit that grants full access to attackers
By Connor Jones Published
News -
Log4Shell: New numbers reveal the scale of the critical software exploit
News Researchers detail how much the Log4J vulnerability is being exploited and who is being targeted the most
By Connor Jones Published
News -
Researchers warn of increase in attacks against Zoho software
News It's believed as much as 62% of ServiceDesk Plus instances globally are using vulnerable software versions
By Connor Jones Published
News -
FBI email server hacked to send fake cyber attack alerts
News An attacker exploited the system misconfiguration to send legitimate-looking cyber security alerts to partners
By Connor Jones Published
News -
Researcher awarded $50,000 for discovering Samsung Galaxy S21 hack
News UK researcher Sam Thomas won the Pwn2Own bounty using a "unique three-bug chain"
By Connor Jones Published
News -
Microsoft Exchange Servers are being used to distribute Qakbot malware
News Exploiting an unpatched Exchange Server vulnerability and a less-than-foolproof malicious URL strategy is leading to mounting infections in businesses
By Connor Jones Published
News -
Critical vulnerability discovered in popular CI/CD framework
News Flaw in GoCD software delivery pipeline thought to have affected a host of NGOs and Fortune 500 companies
By Connor Jones Published
News -
WordPress plugin exploit puts over 90,000 sites at risk
News Security firm Wordfence recommends users of the Brizy Page Builder plugin upgrade to the latest version immediately
By Bobby Hellard Published
News -
Weekly threat roundup: Microsoft Patch Tuesday, HP Omen, Apple
News Pulling together the most dangerous and pressing flaws that businesses need to patch
By Keumars Afifi-Sabet Published
News -
Microsoft patches Internet Explorer zero-day under active attack
News The latest wave of Patch Tuesday fixes also included several updates to address the Print Spooler component in Windows
By Keumars Afifi-Sabet Published
News -
Apple patches zero-day flaw abused by infamous NSO exploit
News The ForcedEntry flaw affects all Apple devices and allows hackers to compromise systems without any user interaction
By Keumars Afifi-Sabet Published
News -
Weekly threat roundup: Atlassian, Microsoft Office, Zoho ManageEngine
News Pulling together the most dangerous and pressing flaws that businesses need to patch
By Keumars Afifi-Sabet Published
News