2,260 Results for:zero day

  • Sort by: 

Lace Tempest exploits SysAid zero-day vulnerability

By Arielle Waldman 09 Nov 2023

SysAid urged users to patch a zero-day vulnerability in its on-premises software, which is being exploited by the threat actor behind the MoveIt Transfer ransomware attacks. Read More

Microsoft, ZDI disagree over Exchange zero-day flaws

By Alexander Culafi 07 Nov 2023

Microsoft said it had previously fixed one of the flaws and that the others did not require a patch. Trend Micro's Zero Day Initiative, however, disagreed with the software giant. Read More

China’s UNC4841 pivots to new Barracuda ESG zero-day

By Alex Scroxton 02 Jan 2024

The Chinese state threat actor behind a series of cyber attacks on Barracuda Networks customers embarked on a campaign targeting the supplier’s email security products in the run-up to Christmas Read More

Cisco patches zero-day vulnerability under attack

By Arielle Waldman 28 Sep 2023

Cisco said its Advanced Security Initiatives Group discovered the zero-day flaw while investigating attempted attacks on the vendor's Group Encrypted Transport VPN feature. Read More

Microsoft halts 3 zero-days on November Patch Tuesday

By Tom Walat 14 Nov 2023

Microsoft addresses 67 vulnerabilities, including six critical, and shuts down four bugs in the Exchange Server email platform this month. Read More

Microsoft tackles three zero-days for October Patch Tuesday

By Tom Walat 10 Oct 2023

The company releases fixes for several products affected by the HTTP/2 "Rapid Reset" vulnerability to help curb widespread Distributed Denial-of-Service attacks. Read More

Mandiant: Citrix zero-day actively exploited since August

By Arielle Waldman 18 Oct 2023

Exploitation against CVE-2023-4966 is ongoing, and Mandiant CTO Charles Carmakal warned patching alone is insufficient against potential attacks that leverage MFA bypass techniques. Read More

Critical Atlassian Confluence zero-day flaw under attack

By Alexander Culafi 04 Oct 2023

Collaboration software vendor Atlassian urged customers with affected versions of Confluence Data Center and Server to apply patches for CVE-2023-22515 immediately. Read More

Fears grow over extent of Cisco IOS XE zero-day

By Alex Scroxton 19 Oct 2023

Researchers have identified spiking numbers of victims of a recently disclosed Cisco zero-day, as users of the networking supplier’s IOS XE software are urged to take defensive measures Read More

Microsoft solves two zero-days for September Patch Tuesday

By Tom Walat 12 Sep 2023

Microsoft addresses 62 vulnerabilities this month, including a Microsoft Word flaw and a Windows bug that have both been exploited in the wild. Read More