zero-day exploit

CISA orders agencies to fix Microsoft vulnerabilities abused by Chinese hackers
A laptop on a table with the Microsoft Exchange logo displayed
Security

CISA orders agencies to fix Microsoft vulnerabilities abused by Chinese hackers

Agencies must patch or disconnect the vulnerable software
4 Mar 2021
Weekly threat roundup: Microsoft Exchange, Chrome, Spectre
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Microsoft Exchange, Chrome, Spectre

Pulling together the most dangerous and pressing flaws that businesses need to patch
4 Mar 2021
Microsoft Exchange targeted by China-linked hackers
A laptop on a table with the Microsoft Exchange logo displayed
zero-day exploit

Microsoft Exchange targeted by China-linked hackers

IT admins have been urged to urgently patch on-premise Exchange Server systems
3 Mar 2021
Weekly threat roundup: Zero-days in Windows, Adobe, Google Chrome
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
vulnerability

Weekly threat roundup: Zero-days in Windows, Adobe, Google Chrome

Pulling together the most dangerous and pressing flaws that businesses need to patch
11 Feb 2021
Google fixes actively exploited Chrome zero-day
Chrome logo in browser displayed on desktop screen
web browser

Google fixes actively exploited Chrome zero-day

The flaw may be related to a recent hacking campaign against the cyber security community
5 Feb 2021
Hackers attempt to exploit SonicWall zero-day vulnerability
SonicWall sign and logo at computer and network security company headquarters in Milpitas, California
zero-day exploit

Hackers attempt to exploit SonicWall zero-day vulnerability

The flaw is believed to be the same vulnerability used in a security incident confirmed by the company late last month
1 Feb 2021
Microsoft fixes actively exploited Defender zero-day flaw
A Windows update ready to be installed on a laptop
zero-day exploit

Microsoft fixes actively exploited Defender zero-day flaw

The firm's latest Patch Tuesday release includes fixes for a total of 83 vulnerabilities across Windows, Azure and more
13 Jan 2021
HPE warns of a critical zero-day flaw in server management software
HPE building with sign
zero-day exploit

HPE warns of a critical zero-day flaw in server management software

There's a workaround for Windows customers, but nothing for Linux admins
18 Dec 2020
Weekly threat roundup: VMware, GitHub, Facebook, and MobileIron
Graphic showing a red unlocked padlock surrounded by blue locked padlocks
Security

Weekly threat roundup: VMware, GitHub, Facebook, and MobileIron

Pulling together the most dangerous and pressing flaws that businesses need to patch
26 Nov 2020
VMware sounds alarm over zero-day flaws in multiple products
Image of a cyber criminal using several computers in a dark room
Security

VMware sounds alarm over zero-day flaws in multiple products

Temporary workarounds have been released for a critical vulnerability that could allow a hacker to seize control of enterprise systems
24 Nov 2020
Millions of WordPress sites targeted by File Manager zero-day
WordPress app icon on iOS device
zero-day exploit

Millions of WordPress sites targeted by File Manager zero-day

A dramatic surge in attacks saw one million sites targeted on 4 September alone
7 Sep 2020
Sophos fixes firewall bug being actively exploited in SQL injection attacks
zero-day exploit

Sophos fixes firewall bug being actively exploited in SQL injection attacks

Customised 'Asnarok’ malware targeted virtual and physical firewalls to attempt to exfiltrate user information
27 Apr 2020
Mozilla fixes two Firefox zero-days being actively exploited
Firefox icon
internet security

Mozilla fixes two Firefox zero-days being actively exploited

Critical vulnerabilities allow attackers to execute arbitrary code or trigger crashes
6 Apr 2020
Mozilla fixes Firefox zero-day being actively exploited
Graphic concept of a hacker with colour effects, overlaid on words
zero-day exploit

Mozilla fixes Firefox zero-day being actively exploited

The US cyber security agency has warned the vulnerability is being used to take control of users’ machines
9 Jan 2020
Tenable: There are far more dangerous threats than zero-days
Zero-day exploit
Security

Tenable: There are far more dangerous threats than zero-days

‘If you’re scared of zero-days, you don’t know what you’re talking about’ claims Tenable
7 Nov 2019
What is ethical hacking? White hat hackers explained
hacking

What is ethical hacking? White hat hackers explained

Not all hackers are motivated by greed - some of them use their powers for good
11 Jul 2019
Apple rolls out its own fix for Zoom zero-day
zero-day exploit

Apple rolls out its own fix for Zoom zero-day

The exploit allowed websites to forcibly activate a user's webcam
11 Jul 2019
How Mr. Robot ‘fudged’ its hacks to protect the public
Mr. Robot poster
Security

How Mr. Robot ‘fudged’ its hacks to protect the public

Showrunners debated over how accurate to make the show’s exploits
5 Jun 2019
WhatsApp call hack installs spyware on users’ phones
spyware

WhatsApp call hack installs spyware on users’ phones

iPhones and Android devices are vulnerable to security flaw – WhatsApp recommends immediate app update
14 May 2019
The Equifax Effect: Explaining the disaster
Security

The Equifax Effect: Explaining the disaster

We take a deep-dive into how the credit agency got so much so wrong
15 Mar 2019
Chrome exploit worked hand-in-hand with Windows bug
Image of generic lines of code to indicate hackers at work
zero-day exploit

Chrome exploit worked hand-in-hand with Windows bug

Google has only seen the vulnerabilities actively exploited on 32-bit Windows 7 machines
8 Mar 2019
Internet Explorer and Exchange zero-days get patched
Security

Internet Explorer and Exchange zero-days get patched

Exploit code is known to be in circulation for both vulnerabilities
13 Feb 2019
Three key pillars of threat visibility
endpoint security

Three key pillars of threat visibility

For a company to see what threats they’re up against, they need visibility into all the data available
28 Jan 2019