SEARCH
Archive
Attackers Exploiting Two Microsoft Exchange Zero Days
Attackers are exploiting two new Microsoft Exchange zero days ( CVE-2022-41040 and CVE-2022-41082) in the wild. Microsoft is working on a patch.
Apple Patches Zero Days in macOS Monterey, Big Sur
Apple has patched zero days in the kernel of macOS Monterey and Big Sur and also fixed 11 vulnerabilities with the release of iOS 16.
To Combat Zero Day Variants, ‘We Need Comprehensive Fixes’
At least half of the zero days exploited in the wild in 2022 are variants of previously fixed bugs, Google data shows.
Decipher Podcast: Caitlin Condon
Caitlin Condon, vulnerability research manager at Rapid7, talks about the rise of “widespread threats,” how the time to exploitation by attackers has shifted and what that means for security teams.
CISA Orders Federal Agencies to Patch Exploited Google, Adobe Flaws
Federal agencies have until March 1 to fix a pair of actively exploited flaws in Google Chrome and Adobe's Commerce and Magento platforms.