Zero-day attacks surged in 2021, Mandiant says

Written by Suzanne Smalley Apr 22, 2022 | CYBERSCOOP Mandiant said that its intelligence division has documented a surge in verified zero-day exploits over the course of the last year,…

Zero-day exploits found and disclosed hit a record high in 2021, Google Project Zero says

Written by AJ Vicens Apr 19, 2022 | CYBERSCOOP Researchers at Google’s Project Zero said they tracked 58 cases of zero-day exploits “in the wild” in 2021 — the most…

Hospital hallway robots get patches for potentially serious bugs

Written by Joe Warminsky Apr 12, 2022 | CYBERSCOOP Rolling robots used at hospitals for a variety of tasks — including transporting medication — have been patched for five vulnerabilities…

Project Zero researchers see promising trends in vulnerability fixes

Written by AJ Vicens Feb 10, 2022 | CYBERSCOOP Big tech vendors generally are remediating serious bugs faster than they were three years ago, according to a new report from…

Relentless Log4j Attacks Include State Actors, Possible Worm

More than 1.8 million attacks, against half of all corporate networks, have already launched to exploit Log4Shell. Call it a “logjam” of threats: Attackers including nation-state actors have already targeted…

Patch Tuesday December 2021 – Microsoft Fixes 67 Flaws, Including 6 Zero-Day Vulnerabilities

December’s Patch Tuesday comes with numerous security fixes and improvements, including two actively exploited zero-day vulnerabilities. The list features spoofing, denial of service, remote code execution, elevation of privilege, and…

Tactical Threat Intelligence: How to shield data from advanced attacks

Struck by the reality of remote collaboration, companies had to rethink both their business strategy and their infrastructure. This led many large enterprises and public organizations to restructure their data…

Log4j Looms Large Over Patch Tuesday

Log4j Looms Large Over Patch Tuesday IT teams knocked for six by a newly disclosed Log4j bug were forced to tackle a new patch load from Microsoft released yesterday, containing 67 new…

Actively Exploited Microsoft Zero-Day Allows App Spoofing, Malware Delivery

December’s Patch Tuesday updates address six publicly known bugs and seven critical security vulnerabilities. Microsoft has addressed a zero-day vulnerability that was exploited in the wild to deliver Emotet, Trickbot…

Microsoft December 2021 Patch Tuesday: Zero-day exploited to spread Emotet malware

Microsoft has released 67 security fixes for software including seven critical issues and a zero-day flaw being actively exploited by cybercriminals.  In the Redmond giant’s latest round of patches, usually released…