March 14, 2023

Microsoft has patched a zero-day bug used by attackers to deploy Magniber ransomware payloads without raising any red flags.

March 14, 2023

Microsoft released its March 2023 Patch Tuesday updates today, fixing two actively exploited zero-day vulnerabilities and a total of 83 flaws.

March 14, 2023

Adobe has issued an urgent warning about "very limited attacks" exploiting a zero-day vulnerability in its Adobe ColdFusion web app development platform.

March 13, 2023

Fortinet released security updates on March 7, 2023, to address a high-severity security vulnerability (CVE-2022-41328) in FortiOS that allowed threat actors to execute unauthorized code or commands.

March 10, 2023

Cybersecurity experts have warned that the first in-the-wild malware to bypass Microsoft's Secure Boot (even on fully patched systems), BlackLotus, will spawn copycats and, available in an easy-to-use bootkit on the Dark Web, inspire firmware attackers to increase their activity.

March 10, 2023

A popular smart intercom and videophone from Chinese company Akuvox, the E11, is riddled with more than a dozen vulnerabilities, including a critical bug that allows unauthenticated remote code execution (RCE).

March 10, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about a critical Remote Code Execution (RCE) vulnerability in VMware's Cloud Foundation, tracked as CVE-2021-39144.

March 9, 2023

Cisco has released patches for a high-severity denial-of-service (DoS) vulnerability in the IOS XR software for ASR 9000, ASR 9902, and ASR 9903 series enterprise routers.

March 9, 2023

IceFire, a previously known Windows-based ransomware strain, has expanded its focus to target Linux enterprise networks belonging to several media and entertainment sector organizations across the world.

March 9, 2023

Chinese cyberspies have targeted unpatched SonicWall gateways, infecting the devices with credential-stealing malware that persists through firmware upgrades.