Common Vulnerabilities and Exposures (CVE) stories - Page 5

Microsoft and Adobe have rolled out urgent security updates, tackling critical Zero-day vulnerabilities in Windows and key applications this month.

Microsoft's September Patch Tuesday addresses 79 vulnerabilities, including four critical RCEs and bugs with in-the-wild exploitation. Surprisingly, no browser patches yet.

Report reveals a 43% surge in vulnerabilities and a 6% rise in ransomware attacks in H1 2024, with VPNs and network infrastructure under significant threat.

GoWit unveils a self-service solution, enabling retailers to set up retail media advertising in just 15 minutes at no cost, after securing USD $1.3 million.

GitLab's annual survey exposes deep-rooted security frustrations, from prioritisation issues to excessive false positives. Here's how to tackle the core problems.

Fastly's latest report reveals a staggering 91% of cyberattacks targeted multiple customers this quarter, up from 69% in 2023, indicating a rise in mass scanning techniques.

The dismantling of Qakbot malware by the FBI has reshaped the malware loader landscape, with SocGholish now leading and security tactics evolving rapidly.

Microsoft patched 88 security flaws in October's Patch Tuesday, including seven critical and ten zero-day vulnerabilities.

Microsoft's August Patch Tuesday fixes 88 vulnerabilities, with evidence of in-the-wild exploitation and public disclosure for 10 of them.

Security experts underscore the importance of immediate remediation for vulnerabilities to mitigate risks and protect organisational assets.

Darktrace reveals 56% of phishing emails bypass security checks. The latest report underscores the persistence of cyber threats and the increasing need for adaptive defences.

A cyberattack by RansomEXX has disrupted services at around 300 Indian banks, affecting ATMs and UPI transactions. CloudSEK investigates the breach.

Tenable has launched Vulnerability Intelligence and Exposure Response, aiming to revolutionise the USD $16 billion vulnerability management sector.

With July designated Ransomware Awareness Month, organisations are urged to understand ransomware threats and adopt proactive strategies for better cyber resilience.

BlackBerry's Threat Research team exposes SideWinder's new cyber-espionage campaign targeting Indian Ocean and Mediterranean ports, aiming for espionage.

Microsoft's July 2024 Patch Tuesday update tackles 142 vulnerabilities, including two zero-day and five critical remote code execution flaws, urging prompt user action.

Microsoft's July 2024 Patch Tuesday reveals 139 vulnerabilities, including two zero-days under active exploitation: Hyper-V's EoP and MSHTML Spoofing.

Qualys has launched a no-cost Tech Debt Report to help organisations identify and mitigate cyber risks from outdated technology.

Endor Labs reveals major security flaws in CocoaPods, threatening apps like Instagram and Uber. Critical CVEs could impact Swift and Objective-C supply chains.

Bitdefender and Netgear's new report reveals that 99.3% of IoT attacks exploit known vulnerabilities, highlighting the urgent need for timely updates and robust security measures.