Attackers Actively Target Windows Installer Zero-Day

Researcher discovered a “more powerful” variant of an elevation-of-privilege flaw for which Microsoft released a botched patch earlier this month. Attackers are actively exploiting a Windows Installer zero-day vulnerability that…

These cybersecurity vulnerabilities could leave millions of connected medical devices open to attack

Critical vulnerabilities in millions of connected devices used in hospital networks could allow attackers to disrupt medical equipment and patient monitors, as well as Internet of Things devices that control systems…

CISA tells agencies to fix hundreds of software flaws, prep for future vulnerabilities

Written by Tim Starks Nov 3, 2021 | CYBERSCOOP The Cybersecurity and Infrastructure Security Agency is ordering federal agencies to patch nearly 300 known, exploited vulnerabilities in a directive published…