Microsoft’s April 2024 Patch Tuesday includes two actively exploited zero-day vulnerabilities
Microsoft has fixed 149 vulnerabilities, two of which are reportedly being exploited in the wild.
2 minutes
News
Update now! ConnectWise ScreenConnect vulnerability needs your attention
ConnectWise customers need to take immediate action to remediate a critical vulnerability.
1 minute
LockBit, the world’s worst ransomware, is down
LockBit's position as ransomware's biggest beast is suddenly in doubt.
1 minute
Microsoft Exchange vulnerability actively exploited
One of Microsoft's Patch Tuesday fixes has flipped from "Likely to be Exploited" to “Exploitation Detected”.
1 minute
Update now! Microsoft fixes two zero-days on February Patch Tuesday
Microsoft has issued patches for 73 security vulnerabilities in its February 2024 Patch Tuesday.
2 minutes
Patch now! Roundcube mail servers are being actively exploited
A vulnerability in Roundcube webmail is being actively exploited and CISA is urging users to install an updated version.
1 minute
Ivanti urges customers to patch yet another critical vulnerability
Ivanti has found yet another vulnerability in versions of Connect Secure, Policy Secure, and ZTA gateways.
2 minutes
FBI and CISA publish guide to Living off the Land techniques
FBI and CISA have produced guidance about Chinese APT group Volt Typhoon and other groups that use Living off the…
4 minutes
Clorox counts the cost of cyberattack
Clorox has reported losses of $49 million following a cyberattack in mid-2023.
1 minute
CISA: Disconnect vulnerable Ivanti products TODAY
CISA has ordered all FCEB agencies to disconnect all instances of Ivanti Connect Secure and Ivanti Policy Secure solution products.
2 minutes
AI likely to boost ransomware, warns government body
The NCSC issued a report that warns about the growth and impact of malware, especially ransomware, due to the availability…
3 minutes
Patch now! Fortra GoAnywhere MFT vulnerability exploit available
A new vulnerability in Fortra GoAnywhere MFT now has exploit code available that allows an attacker to create a new…
2 minutes
CISA urges urgent patching of two actively exploited Citrix NetScaler vulnerabilities
CISA has added two Citrix NetScaler vulnerabilities to its vulnerability catalog, with a very short deadline to patch.
2 minutes
Ivanti vulnerabilities now actively exploited in massive numbers
Two vulnerabilities in Ivanti Connect Secure and Ivanti Policy Secure Gateways are subject to massive exploitation despite an available workaround.
1 minute
Joomla! vulnerability is being actively exploited
A vulnerability in the popular Joomla! CMS has been added to CISA's known exploited vulnerabilities catalog.
2 minutes
Act now! Ivanti vulnerabilities are being actively exploited
Several international security agencies are echoing a warning by Ivanti about actively exploited vulnerabilities in its VPN solution.
2 minutes
Patch now! First patch Tuesday of 2024 is here
Microsoft's patch Tuesday roundup looks like a relatively quiet one. Unless your organization uses FBX files.
2 minutes
Exposing the ransomware lie to “leave hospitals alone”
Ransomware gangs are getting more ruthless to increase the pressure on their victims. Now, even swatting cancer patients seems to…
4 minutes
How Outlook notification sounds can lead to zero-click exploits
A researcher found two Microsoft vulnerabilities which could be combined to achieve zero-click remote code execution.
3 minutes
