Newswires

April 19, 2023

Microsoft Warns of Iranian Hackers Targeting US Critical Infrastructure
Microsoft has issued a warning about a subgroup of Iran-linked advanced persistent threat (APT) actor Mint Sandstorm, which has started to quickly adopt proof-of-concept (PoC) exploit code targeting vulnerabilities in internet-facing applications.
April 19, 2023

Russian APT28 Exploits Old Vulnerability to Target Cisco Routers
US and UK government agencies have issued a joint cybersecurity advisory warning organizations about attacks in which Russian threat group APT28 has exploited an old vulnerability to hack Cisco routers.
April 18, 2023

APT41 Adopts Google Red Teaming Tool for Cyber Espionage
The advanced persistent threat (APT) group known as APT41 has employed an open-source, red-teaming tool, Google Command and Control (GC2), in cyber espionage attacks, marking a shift in its tactics.
April 18, 2023

NSO Group Utilizes Three iOS Zero-Click Exploits in 2022: Citizen Lab Report
According to a recent report from Citizen Lab, Israeli spyware vendor NSO Group used at least three previously unknown iOS zero-click exploits in 2022.
April 17, 2023

Ransomware Attack Targets US Payments Giant NCR
US payments giant NCR has confirmed that it was targeted in a ransomware attack, with the BlackCat/Alphv group taking credit for the incident.
April 14, 2023

Emergency Chrome Update Addresses First Zero-Day of 2023
Google has issued an emergency security update for its Chrome browser to tackle the first zero-day vulnerability exploited in attacks since the beginning of the year.
April 14, 2023

Google and CISA Issue Warning on Android Flaw Exploited by Chinese App
Google and the US Cybersecurity and Infrastructure Security Agency (CISA) have issued a warning about an Android vulnerability, CVE-2023-20963, that was reportedly exploited as a zero-day by the Chinese shopping app Pinduoduo, affecting millions of devices.
April 12, 2023

Windows Admins Urged to Patch Critical MSMQ QueueJumper Bug
Security researchers and experts are warning of a critical vulnerability in the Windows Message Queuing (MSMQ) middleware service that has been patched by Microsoft during this month's Patch Tuesday.
April 12, 2023

Microsoft Offers Guidance on Detecting BlackLotus UEFI Bootkit Attacks
Microsoft has provided guidance to help organizations identify if their machines have been targeted or compromised by the BlackLotus UEFI bootkit, which exploits the CVE-2022-21894 vulnerability.
April 12, 2023

Fortinet Addresses Critical Vulnerability in Data Analytics Solution
Cybersecurity solutions provider Fortinet has announced the release of security updates for multiple products, including patches for a critical vulnerability in its FortiPresence data analytics solution.

Previous 109110111 Next

See VULNERA In Action

Meet with a team member to discuss your use cases and see a demo.

Schedule Now

By Solution

By Feature

I Want To…

Learn More

VULNERA vs Vulnerability Scanners

Security Assessment Buyers Guide

Resources

Resources

Blog

Threat Intelligence

I Want To…

Learn More

Top 10 Vulnerability Management Questions Answered

About

About

Partners

I Want To…

Learn More

Simplifying Vulnerability Management

Newswires

See VULNERA In Action

Quick Menu

Features

Subscribe