2,260 Results for:zero day

  • Sort by: 

Russia-based actor exploited unpatched Office zero day

By Arielle Waldman 12 Jul 2023

Microsoft investigated an ongoing phishing campaign that leverages Word documents to deliver malicious attachments to targeted organizations in the U.S. and Europe. Read More

Palo Alto: SugarCRM zero-day reveals growing cloud threats

By Arielle Waldman 10 Aug 2023

Recent incident response investigations reveal that attackers are becoming more advanced when it comes to the cloud, but there are steps enterprises can take to mitigate risks. Read More

Mandiant: Attacker dwell time down, ransomware up in 2023

By Rob Wright 23 Apr 2024

Mandiant's 'M-Trends' 2024 report offered positive signs for global cybersecurity but warned that threat actors are shifting to zero-day exploitation and evasion techniques. Read More

Apple patches zero days used in spyware attacks on Kaspersky

By Arielle Waldman 22 Jun 2023

Two Apple zero days were used in the spyware campaign Kaspersky Lab named 'Operation Triangulation,' which was initially discovered on iOS devices of Kaspersky employees. Read More

Victims of MOVEit SQL injection zero-day mount up

By Alex Scroxton 06 Jun 2023

The BBC, Boots, and British Airways are among the victims of cyber incidents arising from a recently disclosed vulnerability in the MOVEit file transfer, exploitation of which is spreading fast Read More

Mandiant: New VMware ESXi zero-day used by Chinese APT

By Alexander Culafi 13 Jun 2023

VMware said the ESXi flaw was 'low severity' despite being under active exploitation because it requires the attacker to already have gained root access on the target's system. Read More

Risk & Repeat: CISA hacked via Ivanti vulnerabilities

By Alexander Culafi 13 Mar 2024

The compromise of two internal CISA systems comes on the heels of ongoing attacks and developments related to two zero-day vulnerabilities Ivanti disclosed in January. Read More

Barracuda zero-day bug exploited months prior to discovery

By Alexander Culafi 31 May 2023

Barracuda said a zero-day flaw used to target its email security gateway appliance customers is a remote command injection vulnerability exploited since at least October 2022. Read More

Nokoyawa ransomware exploits Windows CLFS zero-day

By Arielle Waldman 12 Apr 2023

The Nokoyawa ransomware attacks highlight the growing use of zero-day exploits by a variety of threat groups, including financially motivated cybercriminals. Read More

Apple pushes Rapid Response patch to fix WebKit zero-day

By Alex Scroxton 11 Jul 2023

Apple deployed an emergency patch under its Rapid Security Response update programme, but had to temporarily suspend delivery after it caused problems for users of the Safari browser Read More