February 17, 2023

SolarWinds this week published multiple advisories describing high-severity vulnerabilities expected to be patched with a SolarWinds Platform update by the end of February.

February 16, 2023

A new malware dubbed 'ProxyShellMiner' is exploiting the Microsoft Exchange ProxyShell vulnerabilities to deploy cryptocurrency miners throughout a Windows domain.

February 16, 2023

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added four security vulnerabilities exploited in attacks as zero-day to its list of bugs known to be abused in the wild.

February 16, 2023

A recent variant of the Mirai malware, V3G4, has been observed targeting 13 Internet of Things (IoT) vulnerabilities to ensnare devices into a botnet.

February 16, 2023

Cisco on Wednesday announced updates for endpoint, cloud, and web security products to address a critical vulnerability in third-party scanning library ClamAV.

February 15, 2023

Citrix Systems has released security updates for high-severity vulnerabilities in its Virtual Apps and Desktops, and Workspace Apps products.

February 15, 2023

Splunk on Tuesday announced Splunk Enterprise updates that resolve multiple high-severity vulnerabilities, including security defects impacting third-party packages used by the product.

February 15, 2023

Intel has released patches for multiple critical- and high-severity vulnerabilities across its product portfolio, including CVE-2021-39296 (CVSS score of 10), which impacts the Integrated Baseboard Management Controller (BMC) and OpenBMC firmware of several Intel platforms.

February 15, 2023

Organizations using IBM’s Aspera Faspex file transfer solution have been warned that a recently patched vulnerability, tracked as CVE-2022-47986, is being exploited in the wild.

February 14, 2023

Two separate sets of research released this month have uncovered vulnerabilities and threats to physical operations in today's operational technology (OT) networks.