USCYBERCOM has warned organizations to patch an old Microsoft Office Security Feature Bypass Vulnerability after it was exploited by Iran
Two new Microsoft zero-day vulnerabilities have been disclosed; the first affecting SymCrypt, and the second Microsoft Remote Desktop
A Docker vulnerability has been made public that, if exploited, could give attackers full read and write access to an organization’s filesystem
Notorious OT threat Shamoon returned with its third iteration in December, wiping the disks of hundreds of computers in an attack that started at oil giant Saipem. Shamoon 3: Here's What Happened Over the last 7 years, the notoriety of disk-wiping malware "Shamoon" (also known as "Disttrack") has grown. It has been implicated in three [...]
On November 1, 2018, researchers from Armis revealed two severe vulnerabilities known as Bleedingbit which could be used to carry out remote code execution attacks on enterprise firms worldwide. The Bleedingbit vulnerabilities impact Bluetooth low-energy chips built by Texas Instruments (TI) and are used in millions of Cisco and Aruba wireless access points (AP). Although [...]
Foreshadow, or L1 terminal fault vulnerabilities, in various Siemens industrial products could put the most isolated and secure microprocessor memory at risk
The TSMC WannaCry attack is yet another reminder in the constant vigilance of vulnerability management — and the effect it can have on your bottom line
