#zero-day-vulnerabilities

[ follow ]
#cybersecurity #microsoft #apple #microsoft-security-updates #windows-patching #azure-entra-id
Information security
fromComputerworld
4 days ago

For October's Patch Tuesday, a scary number of fixes

Microsoft released 175 updates including four zero-day vulnerabilities; Windows systems require immediate patching while other updates can follow normal schedules.
fromThe Hacker News
1 week ago

Two New Windows Zero-Days Exploited in the Wild - One Affects Every Version Ever Shipped

Of the 183 vulnerabilities, eight of them are non-Microsoft issued CVEs. As many as 165 flaws have been rated as Important in severity, followed by 17 as Critical and one as Moderate. The vast majority of them relate to elevation of privilege vulnerabilities (84), with remote code execution (33), information disclosure (28), spoofing (14), denial-of-service (11), and security feature bypass (11) issues accounting for the rest of them.
Information security
Information security
fromDataBreaches.Net
3 weeks ago

CISA Emergency Directive 25-03: Identify and Mitigate Potential Compromise of Cisco Devices - DataBreaches.Net

Critical Cisco ASA zero-day vulnerabilities enable unauthenticated remote code execution and ROM persistence; agencies must immediately mitigate, assess compromise, and remediate ASA and Firepower devices.
Information security
fromThe Hacker News
3 weeks ago

Cisco ASA Firewall Zero-Day Exploits Deploy RayInitiator and LINE VIPER Malware

Threat actors exploited Cisco ASA zero-day vulnerabilities to deploy advanced RayInitiator and LINE VIPER malware, bypassing protections and achieving persistence.
#cybersecurity
Tech industry
fromTheregister
5 months ago

75 zero-days exploited in 2024 with focus on enterprise tech

Zero-day vulnerabilities are still a prime target for attackers, showing a trend despite fewer reported exploits in 2024.
Tech industry
fromTheregister
5 months ago

75 zero-days exploited in 2024 with focus on enterprise tech

Zero-day vulnerabilities are still a prime target for attackers, showing a trend despite fewer reported exploits in 2024.
more#cybersecurity
fromZDNET
3 months ago

Microsoft fixes two SharePoint zero-days under attack, but it's not over - how to patch

CVE-2025-53771 is a SharePoint Server spoofing vulnerability allowing attackers to impersonate trusted users or resources, while CVE-2025-53770 permits remote code execution.
Privacy professionals
Privacy technologies
fromZDNET
4 months ago

Qualcomm patches three exploited security flaws, but you could still be vulnerable

Qualcomm has patched three critical zero-day security vulnerabilities related to its Adreno GPU driver, indicating ongoing exploitation risks.
DevOps
fromComputerWeekly.com
5 months ago

May Patch Tuesday brings five exploited zero-days to fix | Computer Weekly

Microsoft has released fixes for five zero-day vulnerabilities rated as Important severity, actively exploited in the wild.
#apple
Apple
fromTechRepublic
6 months ago

Apple Patches Two Zero-Days Used in 'Extremely Sophisticated' Attacks

Apple addressed critical security vulnerabilities to protect devices from targeted attacks.
The vulnerabilities exploited sophisticated attacks against specific individuals, indicating possible government involvement.
Apple
fromComputerworld
6 months ago

You need to update your Apple devices immediately

Apple's latest security patch addresses urgent zero-day vulnerabilities amidst rising digital chaos and insecurity.
more#apple
[ Load more ]