9,498 Results for:vulnerability

  • Sort by: 

Apple discloses 2 iOS zero-day vulnerabilities

By Alexander Culafi 06 Mar 2024

CVE-2024-23225 and CVE-2024-23296, which bypass kernel memory protections, mark the second and third zero-day vulnerabilities that Apple has disclosed and patched this year. Read More

Why organizations need risk-based vulnerability management

By Mike Chapple 30 Jan 2024

As organizations become increasingly dispersed, they need a risk-based vulnerability management approach to achieve the best protection against cybersecurity threats. Read More

How to rank and prioritize security vulnerabilities in 3 steps

By Mike Chapple 29 Jan 2024

Vulnerability management programs gather massive amounts of data on security weaknesses. Security teams should learn how to rank vulnerabilities to quickly fix the biggest issues. Read More

Critical vulnerability exposes Fortra GoAnywhere users

By Alex Scroxton 24 Jan 2024

Fortra GoAnywhere MFT users must take steps to address a newly disclosed zero-day vulnerability without delay Read More

Attacks begin on critical Atlassian Confluence vulnerability

By Arielle Waldman 23 Jan 2024

Exploitation activity for CVE-2023-22527 marks the third time in four months that a critical Atlassian Confluence flaw has gained threat actors' attention. Read More

March Patch Tuesday fixes critical Hyper-V vulnerabilities

By Tom Walat 12 Mar 2024

Microsoft also corrects a remote code execution flaw on Exchange Server and issues an advisory related to changes with an outdated file-scanning feature on the messaging platform. Read More

CISA warns Fortinet zero-day vulnerability under attack

By Arielle Waldman 12 Feb 2024

CISA alerted federal agencies that a critical zero-day vulnerability in FortiOS is being actively exploited, though Fortinet has yet to confirm reports. Read More

What to know about UDP vulnerabilities and security

By David Jacobs 20 Oct 2023

UDP is a simple protocol, but it has inherent vulnerabilities that make it prone to attacks, such as limited packet verification, IP spoofing and DDoS attacks. Read More

Cryptocurrency wallets might be vulnerable to 'Randstorm' flaw

By Arielle Waldman 14 Nov 2023

Cryptocurrency recovery company Unciphered discovered a vulnerability in a JavaScript Bitcoin library that could jeopardize private keys. Read More

Chinese threat group exploited VMware vulnerability in 2021

By Arielle Waldman 19 Jan 2024

After VMware confirmed that CVE-2023-34048 had been exploited, Mandiant attributed the activity to a China-nexus threat group and revealed that exploitation began in late 2021. Read More