More results...
Facing ransomware zero-days, Progress Software will release regular service packs to help customers mitigate critical security flaws.
The post After Zero-Day Attacks, MOVEit Turns to Security Service Packs appeared first on SecurityWeek.
Latest episode – listen now! (Full transcript inside.)
Apple rolled out security updates to address actively exploited zero-day flaws in iOS, iPadOS, macOS, watchOS, and Safari. Apple addressed a set of vulnerabilities in iOS, iPadOS, macOS, watchOS, and the Safari browser that were actively exploited in the wild. The IT giant addressed the zero-day vulnerabilities, tracked as CVE-2023-32434 and CVE-2023-32435, exploited as part […]
The post Apple addressed actively exploited zero-day flaws in iOS, macOS, and Safari appeared first on Security Affairs.
Apple didn’t use the words “Triangulation Trojan”, but you probably will.
Apple ships major iOS security updates to cover code execution vulnerabilities already exploited in the wild.
The post Apple Patches iOS Flaws Used in Kaspersky ‘Operation Triangulation’ appeared first on SecurityWeek.
Fake security researcher accounts seen distributing malware disguised as Chrome, Signal, WhatsApp, Discord and Exchange zero-day exploits.
The post Fake Security Researcher Accounts Pushing Malware Disguised as Zero-Day Exploits appeared first on Secu…
A China-linked APT group tracked as UNC3886 has been spotted exploiting a VMware ESXi zero-day vulnerability. Mandiant researchers observed a China-linked cyberespionage group, tracked as UNC3886, exploiting a VMware ESXi zero-day vulnerability tracked as CVE-2023-20867. “VMware Tools contains an Authentication Bypass vulnerability in the vgauth module.” reads the advisory published by VMware. “A fully compromised […]
The post China-linked APT UNC3886 used VMware ESXi Zero-Day appeared first on Security Affairs.
Mandiant has observed a Chinese cyberespionage group exploiting a VMware ESXi zero-day vulnerability for privilege escalation.
The post Chinese Cyberspies Caught Exploiting VMware ESXi Zero-Day appeared first on SecurityWeek.
Fortinet has warned customers that the critical CVE-2023-27997 vulnerability that was patched recently could be a zero-day exploited in limited attacks.
The post Fortinet Warns Customers of Possible Zero-Day Exploited in Limited Attacks appeared first …
Backdoors, exploits, and Little Bobby Tables. Listen now! (Full transcript available…)