Flash Notices (14)

Flash Notice: High Severity Vulnerability Found in Veeam Backup and Replication

A high-severity vulnerability has been discovered in Veeam Backup and Replication software, which supports virtual machines running on Hyper-V

Flash Notice: Patch Immediately - PoC Exploit Publicly Available for Microsoft Word RCE Vulnerability

A proof-of-concept (PoC) exploit for CVE-2023-21716, a severe RCE vulnerability found in Microsoft Word, is now accessible to the public.

Flash Notice: Cisco IP Phone Vulnerabilities

Cisco has released security updates for vulnerabilities impacting its IP Phone 6800, 7800, 7900, and 8800 Series products.

Flash Notice: Four Vulnerabilities Found in Cisco Security Products

Two vulnerabilities were found in the Cisco ClamAV scanning library – an open-source cross-platform antimalware toolkit.

Flash Notice: Critical Vulnerabilities Found in FortiNAC and FortiWeb

Fortinet released security updates for two critical vulnerabilities (CVE-2022-39952 and CVE-2022-42756) found in FortiNAC and FortiWeb products.

Flash Notice: Microsoft Patches Three Zero-Day Vulnerabilities

This week, Microsoft patched 3 zero-day vulnerabilities (CVE-2023-21715, CVE-2023-21823, & CVE-2023-23376) that are currently being exploited by attackers.

Flash Notice: Apple Patches Two Vulnerabilities, Including a Zero-Day

In response to attacks aimed at hacking iPhones, iPads, & Macs, Apple issued urgent security updates that address two vulnerabilities - one a zero-day.

Flash Notice: Beware - QakBot Group Infects Microsoft's OneNote with QakNote Malware

The group TA577 or QakBot has been distributing malware to infect systems via OneNote files since January 31, 2023, with a spike in attacks just this week.

Flash Notice: Thousands of Unpatched VMware Servers Hit by Two-Year Old Vulnerability

This weekend ESXiArgs ransomware hit VMware servers & encrypted thousands of unpatched internet exposed ESXi systems through a 2-year old RCE vulnerability

Flash Notice: Cisco Command-Injection Vulnerability Found in Production Equipment

A command-injection vulnerability was found in Cisco’s production equipment. CVE-2023-20076 could allow unauthorized root-level access & RCE.

Prev 12 13 14 15 16 Next