961 Results for:CVE

  • Sort by: 

Apple patches actively exploited zero-day iOS bug

By Alexander Culafi 25 Oct 2022

The iOS zero-day was joined by a slew of other vulnerabilities in Apple's Oct. 24 security update. The iOS 16 update contained patches for 13 arbitrary code execution flaws. Read More

Extreme Networks emerges as victim of Clop MOVEit attack

By Alex Scroxton 09 Jun 2023

Network equipment and services supplier Extreme Networks has revealed its instance of Progress Software’s MOVEit tool was compromised in the ongoing Clop cyber attack Read More

Coalition: Insurance claims for Cisco ASA users spiked in 2023

By Arielle Waldman 24 Apr 2024

Coalition urged enterprises to be cautious when using Cisco and Fortinet network boundary devices as attackers can leverage the attack vectors to gain initial access. Read More

Exploitation attempts observed against Fortinet FortiNAC flaw

By Arielle Waldman 22 Feb 2023

Hours after Horizon3.ai released a proof of concept exploit through GitHub, Shadowserver Foundation observed several IP addresses attempting to exploit the vulnerability. Read More

Lace Tempest exploits SysAid zero-day vulnerability

By Arielle Waldman 09 Nov 2023

SysAid urged users to patch a zero-day vulnerability in its on-premises software, which is being exploited by the threat actor behind the MoveIt Transfer ransomware attacks. Read More

Critical Fortinet vulnerability under active exploitation

By Alexander Culafi 11 Oct 2022

Fortinet said the critical vulnerability affects three of its services -- FortiOS, FortiProxy and FortiSwitch Manager -- and urged customers to take immediate action. Read More

Rapid7 discloses more F5 BIG-IP vulnerabilities

By Arielle Waldman 16 Nov 2022

While the severity of the issues is relatively low, F5 devices are commonly targeted by attackers to gain persistence inside a network. Read More

Six new vulnerabilities added to CISA catalogue

By Alex Scroxton 16 Sep 2022

CISA adds six new vulnerabilities to its most-wanted list, including one that dates back to 2010 Read More

Risk & Repeat: Moveit Transfer flaw triggers data breaches

By Alexander Culafi 08 Jun 2023

Several organizations, predominantly in the U.K., have confirmed data breaches that stemmed from exploitation of the critical Moveit Transfer zero-day vulnerability. Read More

DogWalk zero-day squashed on August Patch Tuesday

By Tom Walat 09 Aug 2022

In addition to a long-simmering bug in the Microsoft Support Diagnostic Tool, Microsoft corrects a sizeable number of flaws in its Azure Site Recovery product. Read More