0-day vulnerability

Federal security agencies are urging network administrators to immediately patch Atlassian Confluence servers to protect against a critical security flaw that is being exploited by cybercriminals. The Cybersecurity and Infrastructure Security Agency ...

Keeping us in suspense—It doesn’t get worse than this: CVE-2023-20198 is CVSS=10 ...

As vulnerabilities go, the Sandbreak vm2 flaw is as potentially as severe as it gets, snagging a 10.0 CVSS score. The bug, CVE-2022-36067, should be immediately patched if it’s used with applications, ...

DHS has launched the long-awaited Cyber Safety Review Board (CSRB) to assess major cybersecurity incidents and make recommendations for improvements. After a year in the making, the CSRB is first setting its ...

“With the attention CVE-2021-44228 has received, I wouldn’t be surprised if we saw a third CVE related to #Log4j2,” Valtix Senior Security Analyst Davis McCarthy said last week. Those prophetic words turned ...

Maybe Log4j vulnerabilities are like rats—for every one that’s visible, multiple others scurry beneath the surface. It’s too early to tell if that’s what will happen with Log4j. But just a day ...

0-day vulnerability attacks have emerged as one of the major cybersecurity concerns in the last few years. It is known to target individuals, large enterprises, government agencies, and for that matter,. The post ...

More than three years since it was discovered, WannaCry is still a threat for some organizations, research has found How often does your organization conduct a security assessment? Once a year? Once ...

Google has released a new stable version of its Internet surfing software equipped with a patch for a zero-day vulnerability that is reportedly being exploited in the wild. The flaw, if exploited, ...