961 Results for:CVE

  • Sort by: 

EU calls out Fancy Bear over attacks on Czech, German governments

By Alex Scroxton 03 May 2024

The European Union, alongside member states Czechia and Germany, have accused Russian government APT Fancy Bear of being behind a series of attacks on political parties and government bodies Read More

WebKit vulnerability sparks Apple’s first major security update of 2024

By Alex Scroxton 24 Jan 2024

A zero-day in the open source WebKit browser engine that powers Safari has sparked Apple’s first major patch roll-out of the new year Read More

Exploitation of Citrix NetScaler vulns reaching dangerous levels

By Alex Scroxton 26 Oct 2023

Observed activity exploiting two new Citrix NetScaler vulnerabilities disclosed earlier this month is ramping up, and users may be running out of time to patch lest they be attacked Read More

Ivanti confirms 2 zero-day vulnerabilities are under attack

By Arielle Waldman 11 Jan 2024

Volexity reported the vulnerabilities to Ivanti after discovering that suspected Chinese nation-state threat actors created an exploit chain to achieve remote code execution. Read More

Grindr and others patch critical Android bug

By Alex Scroxton 07 Dec 2020

Fixes for CVE-2020-8913 deployed as app developers shore up their defences against a disclosed Google Play vulnerability Read More

Microsoft solves two zero-days for September Patch Tuesday

By Tom Walat 12 Sep 2023

Microsoft addresses 62 vulnerabilities this month, including a Microsoft Word flaw and a Windows bug that have both been exploited in the wild. Read More

GitHub vulnerability leaks sensitive security reports

By Arielle Waldman 24 Apr 2024

The vulnerability is triggered when GitHub users correct code or other mistakes they discover on repositories. But GitHub does not believe it warrants a fix. Read More

Researchers ‘break’ rule designed to guard against Barracuda vulnerability

By Alex Scroxton 07 Nov 2023

Vectra AI researchers found that a Suricata rule designed to detect exploitation of a dangerous Barracuda Email Security Gateway flaw was not entirely effective Read More

LockBit attacks continue via ConnectWise ScreenConnect flaws

By Arielle Waldman 12 Mar 2024

Coalition is latest company to confirm LockBit activity against vulnerable ScreenConnect instances. But the insurer found significant differences between previous LockBit attacks. Read More

US government reinforces ICBC hack link to Citrix Bleed

By Alex Scroxton 15 Nov 2023

US Treasury adds weight to reports that a ransomware gang gained access to the systems of Chinese bank ICBC by exploiting a critical Citrix flaw Read More