Vulnerabilities Vulnerabilities

Continuous news on hardware and software vulnerabilities from proof of concept to zero day, the dangerous to the novel. Follow the patching topic to narrow your news to emerging fixes.

Juniper pushes out monster patch

Juniper pushes out monster patch

Some third party bugs went back to 2003.
Richard Chirgwin Mar 25 2022 6:41AM Hardware
'Single account' compromise led to Microsoft's Lapsus$ code leak

'Single account' compromise led to Microsoft's Lapsus$ code leak

Attackers were interrupted mid-operation.
Richard Chirgwin Mar 24 2022 10:59AM Security
Riverbed spinoff Aternity ships emergency software patch

Riverbed spinoff Aternity ships emergency software patch

Singapore gov researchers discover remote execution bugs.
Richard Chirgwin Mar 14 2022 12:18PM Security
Head over to the data centre and patch that UPS

Head over to the data centre and patch that UPS

Researchers ignited an APC Smart-UPS as proof-of-concept.
Richard Chirgwin Mar 9 2022 9:33AM Security
Exchange Server code execution vulnerability patched

Exchange Server code execution vulnerability patched

Along with video extension bugs and more.
Richard Chirgwin Mar 9 2022 8:35AM Security
Cisco email appliances have a brickable vulnerability

Cisco email appliances have a brickable vulnerability

Plus two other vulns patched.
Richard Chirgwin Feb 17 2022 2:00PM Security
Chrome's first zero-day bug for 2022 is reportedly being exploited

Chrome's first zero-day bug for 2022 is reportedly being exploited

Don't wait for the auto-update.
Richard Chirgwin Feb 16 2022 9:15AM Security
SAP issues patches for critical bugs

SAP issues patches for critical bugs

US DHS warns exploits could halt all operations.
Richard Chirgwin Feb 10 2022 12:00PM Security
Microsoft pushes patch for exploited flaw in on-prem Exchange

Microsoft pushes patch for exploited flaw in on-prem Exchange

Exchange Server 2013, 2016 and 2019 under attack.
Juha Saarinen Nov 10 2021 6:56AM Security
Apple patches zero-day flaw affecting all devices

Apple patches zero-day flaw affecting all devices

Users urged to apply updates.
Staff Writer Sep 14 2021 6:48AM Security
Google must face shareholder lawsuit claiming it hid security risks

Google must face shareholder lawsuit claiming it hid security risks

Accused of fraudulently concealing security vulnerabilities.
Jonathan Stempel Jun 17 2021 10:32AM Security
Aussie 'buy now, pay later' player Zip scales and matures its IT and security

Aussie 'buy now, pay later' player Zip scales and matures its IT and security

Podcast: Ephemeral infrastructure and operations at a fast-growing fintech.
Ry Crozier May 31 2021 6:30AM Financial Services
VMware says critical vCenter Server bug needs 'immediate attention'

VMware says critical vCenter Server bug needs 'immediate attention'

Urges patching as soon as possible.
Ry Crozier May 26 2021 6:13AM Security
Bupa A/NZ runs a security transformation program

Bupa A/NZ runs a security transformation program

As part of a global uplift.
Ry Crozier May 14 2021 1:07PM Cloud
Vendors patch wi-fi flaws that could be used to attack home networks

Vendors patch wi-fi flaws that could be used to attack home networks

'FragAttacks' detailed after nine months of behind-the-scenes work.
Ry Crozier May 13 2021 7:24AM Networking
New Microsoft Exchange vulnerabilities require urgent patching: ACSC

New Microsoft Exchange vulnerabilities require urgent patching: ACSC

March patches no good to stop persistent access to systems.
Juha Saarinen Apr 14 2021 6:45PM Security
SolarWinds says hack fallout cost at least $23.5 million

SolarWinds says hack fallout cost at least $23.5 million

In the first three months of 2021.
Raphael Satter Apr 14 2021 12:16PM Security
NAME:WRECK vulnerabilities could impact 100 million servers, IoT devices

NAME:WRECK vulnerabilities could impact 100 million servers, IoT devices

Patches and mitigations available.
Staff Writer Apr 13 2021 2:52PM Networking
University of Queensland uplifts its vulnerability management

University of Queensland uplifts its vulnerability management

Improves breadth and depth of scans and visibility.
Ry Crozier Mar 23 2021 12:01AM Cloud
European Banking Authority says email servers targeted by attackers

European Banking Authority says email servers targeted by attackers

No data exfiltrated.
Ry Crozier Mar 9 2021 12:48PM Financial Services

Log In

  |  Forgot your password?