Flash Notices (21)

| Jan 26, 2022

Flash Notice: “PwnKit”: Linux PolicyKit Security Vulnerability Discovered in Polkit’s Pkexec, Hiding in Plain Sight for 12 years

A memory corruption vulnerability was discovered in Polkit’s pkexec. CVE-2021-4034, aka PwnKit, could allow unprivileged users to gain root privileges by exploiting it in its default configuration.

| Jan 26, 2022

Flash Notice: Threat Actors Target SonicWall RCE Vulnerability (CVE-2021-20038)

New exploits of a critical vulnerability (CVE-2021-20038) affecting SonicWall's Secure Mobile Access (SMA) gateway was discovered yesterday.

| Jan 18, 2022

Flash Notice: Microsoft Warns - Ukrainian Organizations Targeted by Destructive Malware Disguised as Ransomware

Microsoft published a report detailing their discovery of malware disguised as ransomware being used to corrupt systems of several Ukrainian organizations.

| Jan 3, 2022

Flash Notice: Y2K22? Microsoft Exchange Server Breaks as we Welcome the New Year

As the clock struck midnight on 1/1/2022, Microsoft had an unexpected hiccup with its Exchange servers, which meant the servers couldn't process mail.

| Dec 13, 2021

Flash Notice: (UPDATED) Zero-Day Vulnerability - Log4Shell is a Critical Threat to Applications

Security teams are in a hurry to patch an unknown active vulnerability that was found in Apache’s Log4j and is now named Log4Shell ((CVE-2021-44228).

| Dec 7, 2021

Flash Notice: APT Group Continues to Exploit Zoho ManageEngine ServiceDesk Plus Vulnerability

Due to an unsuccessful patch in Zoho ManageEngine ServiceDesk Plus in September 2021, several undisclosed organizations have been compromised by APT Group

| Dec 2, 2021

Flash Notice - Wormable Security Vulnerability Found in Several HP Printer Models

Cyber security researchers have discovered two vulnerabilities, now named Printing Shellz, that affect 150 different HP multifunction printers.

| Nov 29, 2021

Flash Notice - Windows Zero-Day 'InstallerFileTakeOver' Vulnerability Allows Unauthorized Users to Become an Admin

During Patch Tuesday, Microsoft fixed a zero-day Windows vulnerability. However, the patch was bypassed and led to a new privilege elevation vulnerability named ‘InstallerFileTakeOver’.

| Nov 19, 2021

Flash Notice - APT Group Exploits FatPipe Zero-Day Vulnerability for 6 Months

The FBI issued a notice yesterday warning that APT has been exploiting a zero-day vulnerability in FatPipe’s router clustering and load balancer products.

| Nov 19, 2021

Flash Notice - Emotet Botnet is Back with New Spam Campaigns

Last seen in January 2021, after law enforcement took them down, Emotet is back & is using TrickBot to install Emotet malware on infected Windows systems.

Prev 18 19 20 21 22 Next

Why Avertium?

Considering Microsoft?

Latest Avertium News

Governance, Risk, + Compliance

Attack Surface Management

Threat Detection + Response

Microsoft Security Solutions

About Us

Latest Avertium News

Our Partners

Partner Opportunity Registration

Latest Avertium Resource

News & Resources

Latest Resource

Your header 1 goes here

Flash Notice: “PwnKit”: Linux PolicyKit Security Vulnerability Discovered in Polkit’s Pkexec, Hiding in Plain Sight for 12 years

Flash Notice: Threat Actors Target SonicWall RCE Vulnerability (CVE-2021-20038)

Flash Notice: Microsoft Warns - Ukrainian Organizations Targeted by Destructive Malware Disguised as Ransomware

Flash Notice: Y2K22? Microsoft Exchange Server Breaks as we Welcome the New Year

Flash Notice: (UPDATED) Zero-Day Vulnerability - Log4Shell is a Critical Threat to Applications

Flash Notice: APT Group Continues to Exploit Zoho ManageEngine ServiceDesk Plus Vulnerability

Flash Notice - Wormable Security Vulnerability Found in Several HP Printer Models

Flash Notice - Windows Zero-Day 'InstallerFileTakeOver' Vulnerability Allows Unauthorized Users to Become an Admin

Flash Notice - APT Group Exploits FatPipe Zero-Day Vulnerability for 6 Months

Flash Notice - Emotet Botnet is Back with New Spam Campaigns

Cybersecurity Solutions

Company

Sign-up for weekly Flash Notices, tips and security news.