vulnerability

Weekly threat roundup: Google Chrome, Pulse Secure, Telegram
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Google Chrome, Pulse Secure, Telegram

Pulling together the most dangerous and pressing flaws that businesses need to patch
22 Apr 2021
Security researchers criticised for project that deliberately added vulnerabilities to Linux
Linux code on a black background
Linux

Security researchers criticised for project that deliberately added vulnerabilities to Linux

Open source maintainer Greg Kroah-Hartman slams their project, claiming “our community does not appreciate being experimented on”
22 Apr 2021
Hackers exploit Pulse Secure VPN flaws in sophisticated global campaign
A hacker wearing glasses in a dark room with the Chinese flag shown in the background on a computer display
hacking

Hackers exploit Pulse Secure VPN flaws in sophisticated global campaign

Chinese-backed groups have been spying on US and European organisations including those in the defence industry
21 Apr 2021
Project Zero trials 30-day ‘patching window’
A padlock in chains on a keyboard in front of a red display
vulnerability

Project Zero trials 30-day ‘patching window’

The policy change aims to encourage businesses to apply patches while reducing the risk of opportunistic attacks
16 Apr 2021
Top US credit unions have multiple web app security problems
Credit union building
cyber security

Top US credit unions have multiple web app security problems

One in ten web applications running on old components that contain known vulnerabilities
15 Apr 2021
Weekly threat roundup: Chrome, Exchange Server, IoT devices
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Chrome, Exchange Server, IoT devices

Pulling together the most dangerous and pressing flaws that businesses need to patch
15 Apr 2021
Microsoft patches actively exploited Desktop Window Manager flaw
A laptop on a table with the Microsoft Exchange logo displayed
vulnerability

Microsoft patches actively exploited Desktop Window Manager flaw

The latest Patch Tuesday round of updates include fixes for 114 vulnerabilities, including five zero-days
14 Apr 2021
Best ransomware removal tools
A ransomware splash screen displayed on a laptop in an office
ransomware

Best ransomware removal tools

The top free and paid toolkits available right now to protect you from hackers
9 Apr 2021
What is ethical hacking? White hat hackers explained
A graphic displaying an ethical hacker
hacking

What is ethical hacking? White hat hackers explained

Not all hackers are motivated by greed - some of them use their powers for good
9 Apr 2021
Weekly threat roundup: Fortinet, Apple Mail, AMD Zen 3 CPUs
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Fortinet, Apple Mail, AMD Zen 3 CPUs

Pulling together the most dangerous and pressing flaws that businesses need to patch
8 Apr 2021
Weekly threat roundup: Apple, VMware, OpenSSL
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Apple, VMware, OpenSSL

Pulling together the most dangerous and pressing flaws that businesses need to patch
1 Apr 2021
Microsoft launches bug bounty programme for Teams
The Microsoft Teams app logo displayed on a smartphone
bugs

Microsoft launches bug bounty programme for Teams

The programme will award bug hunters up to $30,000 for the most severe exploits
25 Mar 2021
Weekly threat roundup: Android, Windows, Purple Fox
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Android, Windows, Purple Fox

Pulling together the most dangerous and pressing flaws that businesses need to patch
25 Mar 2021
F5 Networks BIG-IP flaw is the latest to be exploited by hackers
A concept image of a hacker behind a stream of binary
exploits

F5 Networks BIG-IP flaw is the latest to be exploited by hackers

Researchers identify ‘full chain exploitation’ targeting one of the seven now-patched remote code-execution flaws
22 Mar 2021
Weekly threat roundup: DuckDuckGo, Chrome, Cisco
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: DuckDuckGo, Chrome, Cisco

Pulling together the most dangerous and pressing flaws that businesses need to patch
18 Mar 2021
Restricting admin rights heavily mitigates impact of Microsoft flaws
The Windows (start menu) key on a keyboard
vulnerability

Restricting admin rights heavily mitigates impact of Microsoft flaws

Businesses may have dampened the effects of a 48% year-on-year rise in vulnerabilities by simply restricting privileges
17 Mar 2021
NCSC issues Exchange hack warning as Microsoft probes security partner leak
The NCSC's official web page
hacking

NCSC issues Exchange hack warning as Microsoft probes security partner leak

An estimated 7,000 UK servers have been affected by the vulnerabilities and only half have been secured
15 Mar 2021
Weekly threat roundup: Internet Explorer, Linux, GitHub
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Internet Explorer, Linux, GitHub

Pulling together the most dangerous and pressing flaws that businesses need to patch
11 Mar 2021
Microsoft patches actively exploited Internet Explorer flaw
The Internet Explorer icon as seen on a smartphone in behind a screen with lines of code
vulnerability

Microsoft patches actively exploited Internet Explorer flaw

The latest Patch Tuesday sees the Windows developer patch a fifth actively exploited bug disclosed within a week
10 Mar 2021
Weekly threat roundup: Microsoft Exchange, Chrome, Spectre
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Microsoft Exchange, Chrome, Spectre

Pulling together the most dangerous and pressing flaws that businesses need to patch
4 Mar 2021
Weekly threat roundup: IBM, VMware and Python
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: IBM, VMware and Python

Pulling together the most dangerous and pressing flaws that businesses need to patch
25 Feb 2021
VMware patches critical ESXi and vSphere Client vulnerabilities
The VMware website as seen through a magnifying glass against a monitor
vulnerability

VMware patches critical ESXi and vSphere Client vulnerabilities

These include a 9.8-rated bug that hackers can exploit to execute remote commands with unrestricted privileges
24 Feb 2021
Weekly threat roundup: SolarWinds-style hack, macOS Big Sur, Telegram
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: SolarWinds-style hack, macOS Big Sur, Telegram

Pulling together the most dangerous and pressing flaws that businesses need to patch
18 Feb 2021