FDA Approves Use of New Tool for Medical Device Vulnerability Scoring
The U.S. Food and Drug Administration (FDA) this week announced that it has approved the use of a new rubric specifically designed by the...
Tagged: vulnerability
XSS Vulnerability Exploited in Tech Support Scam
Malwarebytes security researchers have identified a new campaign in which tech support scammers are exploiting a cross-site scripting (XSS) vulnerability and are relying exclusively...
QNAP Issues Advisory on Zerologon Vulnerability
Storage solutions provider QNAP this week published an advisory to warn customers that certain versions of QTS, the operating system for its network-attached storage...
VMware Patches Critical Code Execution Vulnerability in ESXi
VMware this week informed customers that it has patched several vulnerabilities in its ESXi, Workstation, Fusion and NSX-T products, including a critical flaw that...
Critical Vulnerability Allows Hackers to Disrupt SonicWall Firewalls
A significant number of SonicWall firewalls may be affected by a critical vulnerability that can be exploited for denial-of-service (DoS) attacks and possibly arbitrary...
SAP Patches Critical Vulnerability in CA Introscope Enterprise Manager
The updates released by SAP for October 2020 include 15 Security Notes, including one that addresses a critical vulnerability. Six previously released Patch Day...
Microsoft Patches New Windows ‘Ping of Death’ Vulnerability
One of the vulnerabilities that Microsoft addressed as part of the October 2020 Patch Tuesday is a critical bug in Windows’ TCP/IP driver that...
Microsoft Warns of Russian Cybercriminals Exploiting Zerologon Vulnerability
Microsoft reported this week that it has spotted Zerologon attacks apparently conducted by TA505, a notorious Russia-linked cybercrime group. According to Microsoft, the Zerologon...
Microsoft Says Iranian Hackers Exploiting Zerologon Vulnerability
The Iran-linked threat actor known as MuddyWater is actively targeting the Zerologon vulnerability in Windows Server, Microsoft warns. Also known as Seedworm, MERCURY, and...
Microsoft says Iranian hackers are exploiting the Zerologon vulnerability
Microsoft said on Monday that Iranian state-sponsored hackers are currently exploiting the Zerologon vulnerability in real-world hacking campaigns. Successful attacks would allow hackers to...