February 23, 2023

Multiple threat actors have been observed weaponizing a now-patched critical security vulnerability, CVE-2022-47966, impacting several Zoho ManageEngine products since January 20, 2023.

February 23, 2023

Cisco has released patches for two high-severity vulnerabilities, CVE-2023-20011 and CVE-2023-20089, affecting components of its Application Centric Infrastructure (ACI) software-defined networking solution.

February 22, 2023

Hundreds of R1Soft servers have been compromised through exploitation of a vulnerability tracked as CVE-2022-36537, according to cybersecurity company Fox-IT.

February 22, 2023

The US Cybersecurity and Infrastructure Security Agency (CISA) is warning organizations that two vulnerabilities affecting the Mitel MiVoice Connect business communications platform have been exploited in the wild.

February 21, 2023

Virtualization technology giant VMware has released a major security fix to cover a critical vulnerability in its enterprise-facing Carbon Black App Control product.

February 21, 2023

Threat actors have been observed exploiting a privilege escalation vulnerability on the Windows Backup and Restore service, CVE-2023-21752.

February 21, 2023

Apple has updated its security advisories to add three new iOS and macOS vulnerabilities, including ones belonging to a new class of bugs.

February 21, 2023

Horizon3's Attack Team has released a PoC exploit for CVE-2022-39952, a critical vulnerability affecting Fortinet's network access control solution, FortiNAC.

February 17, 2023

Malwarebytes has warned of a remote code execution vulnerability impacting several Arris routers, tracked as CVE-2022-45701.

February 17, 2023

Fortinet has released security updates for its FortiNAC and FortiWeb products, addressing two critical-severity vulnerabilities.