Microsoft Says Windows Update Zero-Day Being Exploited to Undo Security Fixes

Windows Themes zero-day bug exposes users to NTLM credential theft

itsecuritynews.info - 30/Oct 22:04

Plus a free micropatch until Redmond fixes the flaw There’s a Windows Themes spoofing zero-day bug on the loose that allows attackers to steal...

QNAP fixes NAS backup software zero-day exploited at Pwn2Own

bleepingcomputer.com - 29/Oct 17:35

QNAP has fixed a critical zero-day vulnerability exploited by security researchers on Thursday to hack a TS-464 NAS device during the Pwn2Own Ireland...

VMware fixes bad patch for critical vCenter Server RCE flaw

bleepingcomputer.com - 22/Oct 14:08

VMware has released another security update for CVE-2024-38812, a critical VMware vCenter Server remote code execution vulnerability that was not...

Microsoft SharePoint RCE flaw exploits in the wild – you’ve had 3 months to patch

itsecuritynews.info - 23/Oct 20:05

Plus, a POC to make it extra easy for attackers A Microsoft SharePoint bug that can allow an attacker to remotely inject code into vulnerable versions...

Fortinet Flaw CVE-2024-47575 exploited by UNC5820

thecyberthrone.in - 25/Oct 15:42

Fortinet has confirmed that the recent critical zero-day vulnerability affecting its FortiManager network management solution is being exploited...

QNAP fixes CVE-2024-50388 that’s exploited in Pwn2Own Ireland

thecyberthrone.in - 30/Oct 10:13

QNAP has addressed a critical zero-day vulnerability in its HBS 3 Hybrid Backup Sync software, following its successful exploitation at the recent...

Samsung zero-day flaw actively exploited in the wild

securityaffairs.co - 22/Oct 15:41

Google’s Threat Analysis Group (TAG) researchers warn of a Samsung zero-day vulnerability that is exploited in the wild. Google’s Threat Analysis...

Zero-Click Flaw Exposes Potentially Millions of Popular Storage Devices to Attack

itsecuritynews.info - 01/Nov 10:36

A vulnerability categorized as “critical” in a photo app installed by default on Synology network-attached storage devices could give attackers...

Critical Flaw in Open Policy Agent Exposed NTLM Credentials, Patch Released

itsecuritynews.info - 23/Oct 20:34

A now-resolved security vulnerability in Styra’s Open Policy Agent (OPA) could have exposed New Technology LAN Manager (NTLM) hashes, potentially...

Samsung zero-day flaw actively exploited in the wild

itsecuritynews.info - 22/Oct 16:04

Google’s Threat Analysis Group (TAG) researchers warn of a Samsung zero-day vulnerability that is exploited in the wild. Google’s Threat Analysis...

Rubriques :

Microsoft Says Windows Update Zero-Day Being Exploited to Undo Security Fixes

Articles similaires

Windows Themes zero-day bug exposes users to NTLM credential theft

QNAP fixes NAS backup software zero-day exploited at Pwn2Own

VMware fixes bad patch for critical vCenter Server RCE flaw

Microsoft SharePoint RCE flaw exploits in the wild – you’ve had 3 months to patch

Fortinet Flaw CVE-2024-47575 exploited by UNC5820

QNAP fixes CVE-2024-50388 that’s exploited in Pwn2Own Ireland

Samsung zero-day flaw actively exploited in the wild

Zero-Click Flaw Exposes Potentially Millions of Popular Storage Devices to Attack

Critical Flaw in Open Policy Agent Exposed NTLM Credentials, Patch Released

Samsung zero-day flaw actively exploited in the wild

Les derniers communiqués