Tag: zero-day

Atlassian Cisco Talos Cybersecurity Secure-X Threat Advisory Vulnerability zero-day

Threat Advisory: Atlassian Confluence zero-day vulnerability under active exploitation

1 month ago
admin

Cisco Talos is monitoring reports of an actively exploited zero-day vulnerability in Confluence Data Center and Server. Confluence is a Java-based corporate Wiki employed by numerous enterprises. At this time,…

Cybersecurity Secure-X Threat Advisory Vulnerability zero-day

Threat Advisory: Zero-day vulnerability in Microsoft diagnostic tool MSDT could lead to code execution

1 month ago
admin

A recently discovered zero-day vulnerability in the Microsoft Windows Support Diagnostic Tool (MSDT) made headlines over the past few days. CVE-2022-30190, also known under the name “Follina,” exists when MSDT…

Cybersecurity

Log4j flaw: This new threat is going to affect cybersecurity for a long time

7 months ago
admin

If there ever was any doubt over the severity of the Log4j vulnerability, director of US cybersecurity and infrastructure agency CISA, Jen Easterly, immediately quashed those doubts when she described…

Cybersecurity Malware Vulnerabilities Web Security

Relentless Log4j Attacks Include State Actors, Possible Worm

7 months ago
admin

More than 1.8 million attacks, against half of all corporate networks, have already launched to exploit Log4Shell. Call it a “logjam” of threats: Attackers including nation-state actors have already targeted…

Cybersecurity Patch Tuesday Updates

Patch Tuesday December 2021 – Microsoft Fixes 67 Flaws, Including 6 Zero-Day Vulnerabilities

7 months ago
admin

December’s Patch Tuesday comes with numerous security fixes and improvements, including two actively exploited zero-day vulnerabilities. The list features spoofing, denial of service, remote code execution, elevation of privilege, and…

Cybersecurity Hacks Malware Vulnerabilities Web Security

Apache’s Fix for Log4Shell Can Lead to DoS Attacks

7 months ago
admin

Not only is the jaw-dropping flaw in the Apache Log4j logging library ubiquitous; Apache’s blanket of a quickly baked patch for Log4Shell also has holes. As if finding one easily-exploited…

Cybersecurity Cybersecurity News log4j vulnerability RaaS Ransomware

New Ransomware Family Deployed in Log4Shell Attacks

7 months ago
admin

Recently a public exploit for the major zero-day vulnerability known as ‘Log4Shell’ in the Apache Log4j Java-based logging platform has been made available. Log4j is a development platform that enables…

Cybersecurity Cybersecurity Awareness Ransomware Threat Research

Tactical Threat Intelligence: How to shield data from advanced attacks

7 months ago
admin

Struck by the reality of remote collaboration, companies had to rethink both their business strategy and their infrastructure. This led many large enterprises and public organizations to restructure their data…

Cybersecurity

Log4j Looms Large Over Patch Tuesday

7 months ago
admin

Log4j Looms Large Over Patch Tuesday IT teams knocked for six by a newly disclosed Log4j bug were forced to tackle a new patch load from Microsoft released yesterday, containing 67 new…

Cybersecurity

CISA orders federal civilian agencies to patch Log4j vulnerability and 12 others by December 24

7 months ago
admin

The US Cybersecurity and Infrastructure Security Agency has ordered all civilian federal agencies to patch the Log4j vulnerability and three others by December 24, adding it to the organization’s Known…