vulnerability

Weekly threat roundup: Microsoft Defender, Adobe, Mimecast
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Microsoft Defender, Adobe, Mimecast

Pulling together the most dangerous and pressing flaws that businesses need to patch
14 Jan 2021
Weekly threat roundup: Zyxel, Samsung Galaxy, Windows 10
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Zyxel, Samsung Galaxy, Windows 10

Pulling together the most dangerous and pressing flaws that businesses need to patch
7 Jan 2021
HPE warns of a critical zero-day flaw in server management software
HPE building with sign
zero-day exploit

HPE warns of a critical zero-day flaw in server management software

There's a workaround for Windows customers, but nothing for Linux admins
18 Dec 2020
Best ransomware removal tools
A ransomware splash screen displayed on a laptop in an office
ransomware

Best ransomware removal tools

The top free and paid toolkits available right now to protect you from hackers
16 Dec 2020
Golang XML parser vulnerability could enable SAML authentication bypass
Close-up of code being parsed
vulnerability

Golang XML parser vulnerability could enable SAML authentication bypass

Three critical bugs have been discovered with no patch available at present
15 Dec 2020
MoD launches bug bounty programme
Image of a cyber criminal using several computers in a dark room
Security

MoD launches bug bounty programme

Researchers are encouraged to report any flaws they find on MoD systems, but they must not engage in social engineering or phishing attacks
10 Dec 2020
Weekly threat roundup: Microsoft Teams, VMware and QNAP NAS drives
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
Security

Weekly threat roundup: Microsoft Teams, VMware and QNAP NAS drives

Pulling together the most dangerous and pressing flaws that businesses need to patch
10 Dec 2020
DocuShare flaws could lead to data leakage unless you install these patches
Bucket leaking water
vulnerability

DocuShare flaws could lead to data leakage unless you install these patches

CISA warns companies to apply patches now
4 Dec 2020
Android apps still vulnerable to a major bug despite an existing patch
Thumb touching a phone's screen within the Android App store
Google Android

Android apps still vulnerable to a major bug despite an existing patch

Millions of users at risk from a flaw in the Google Play core library
3 Dec 2020
GitHub: Open source vulnerabilities can go undetected for four years
GitHub office with GitHub logo over top
Security

GitHub: Open source vulnerabilities can go undetected for four years

GitHub research finds that time between vulnerability detection and fix must shorten
3 Dec 2020
Google's Project Zero uncovers iPhone zero-day Wi-Fi exploit
Coffee drinker using a black iPhone 11
remote access

Google's Project Zero uncovers iPhone zero-day Wi-Fi exploit

Buggy code in iOS could have been exploited by hackers to remotely take control of devices
2 Dec 2020
Weekly threat roundup: VMware, GitHub, Facebook, and MobileIron
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
Security

Weekly threat roundup: VMware, GitHub, Facebook, and MobileIron

Pulling together the most dangerous and pressing flaws that businesses need to patch
26 Nov 2020
WAPDropper malware hooks you up to premium telecoms services
An anonymous mobile phone user using their device in a darkened room
Security

WAPDropper malware hooks you up to premium telecoms services

Hackers have incorporated machine learning into a strain that subscribes victims to legitimate services provided by telecoms firms
24 Nov 2020
VMware sounds alarm over zero-day flaws in multiple products
Image of a cyber criminal using several computers in a dark room
Security

VMware sounds alarm over zero-day flaws in multiple products

Temporary workarounds have been released for a critical vulnerability that could allow a hacker to seize control of enterprise systems
24 Nov 2020
Weekly threat roundup: Cisco, BlueKeep, Apache Unomi
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
Security

Weekly threat roundup: Cisco, BlueKeep, Apache Unomi

Pulling together the most dangerous and pressing flaws that businesses need to patch
19 Nov 2020
How cyber attack simulations differ from penetration tests and vulnerability scanning
whitepaper
penetration testing

How cyber attack simulations differ from penetration tests and vulnerability scanning

Exploring the Cymulate Edge
18 Nov 2020
BlueKeep is still haunting thousands of enterprise systems
Unknown hacker on a computer in a dark room
Security

BlueKeep is still haunting thousands of enterprise systems

Millions of devices in total are vulnerable to historic security threats that have been patched
17 Nov 2020
Cisco patch notes ‘left out’ details of RCE flaws
Close up Cisco logo on a UCS C240 M4 server in a data centre
Security

Cisco patch notes ‘left out’ details of RCE flaws

The company has since released advisories for three flaws a week after first patching its security management platform
17 Nov 2020
Weekly threat roundup: Windows, Intel, and Ubuntu
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
Security

Weekly threat roundup: Windows, Intel, and Ubuntu

Pulling together the most dangerous and pressing flaws that businesses need to patch
13 Nov 2020
Patch management vs vulnerability management
Plasters over a hard disc drive to symbolise patch management
enterprise security

Patch management vs vulnerability management

What exactly is patch management, and why should IT pros sit up and take notice of doing it properly?
12 Nov 2020
Microsoft patches actively exploited Windows Kernel flaw
An image of a bandaid as a metaphor for a vulnerability patch
vulnerability

Microsoft patches actively exploited Windows Kernel flaw

The patch is one of 112 issued in November's Patch Tuesday
11 Nov 2020
Hackers target flaws in PBX system to hijack VoIP calls
binary on a screen with words 'hacking attack'
hacking

Hackers target flaws in PBX system to hijack VoIP calls

Flaws in Sangoma PBX allow hackers to make outgoing calls to premium-rate numbers
6 Nov 2020
Oracle releases emergency WebLogic Server patch to fix RCE flaw
Oracle
enterprise security

Oracle releases emergency WebLogic Server patch to fix RCE flaw

The vulnerability could enable hackers to remotely exploit the server without any user interaction
3 Nov 2020