SEARCH
Archive
Microsoft Warns of Unpatched Office Zero Day
The Microsoft zero-day flaw (CVE-2023-36884) is being leveraged by a Russian-based cybercriminal group in phishing emails sent to defense and government entities in Europe and North America.
Apple Releases Fix For Actively Exploited WebKit Bug
The update for the flaw (CVE-2023-37450) is available for iOS 16.5.1, macOS Ventura 13.4.1 and iPadOS 16.5.1.
Barracuda ESG Flaw Exploited by ‘Aggressive’ China-Linked Actor
Researchers point to an “aggressive and skilled actor” with suspected links to China as the group behind the attacks on a recently disclosed Barracuda ESG zero day.
Google Patches Type Confusion Zero Day in Chrome
The type confusion bug is the third zero day that Google has addressed this year.
UNC4857 Exploits MOVEit Transfer Flaw in Data Extortion Attacks
Threat actors continue to target the critical-severity file transfer bug to launch data exfiltration attacks, and researchers say organizations should potentially expect ransom emails in the coming weeks.