vulnerabilities Check Point vulnerability far worse than thought – exploited in wild since April , and The Stack May 30, 2024
Cybersecurity Turf wars? NIST to fix NVD backlog by September – insists it’s right agency to run vulnerability database , and Edward Targett May 30, 2024
Cybersecurity Root, but no response: 6 pre-auth RCEs in VMware ignored , and Edward Targett May 22, 2024
Ivanti Gird your loins, there’s a new pre-auth RCE in Ivanti boxes landing , and Edward Targett May 2, 2024
NVD As NVD flatlines, cybersecurity professionals call for urgent action , and Edward Targett April 18, 2024
VPN Palo Alto Networks: CVSS 10 bug in Pan-OS is being exploited in the wild , and The Stack April 12, 2024
xz-utils xz-utils Github repository disabled as Linux maintainers assess blast radius of backdoor, earlier commits , and Edward Targett March 30, 2024
Fortinet Fortinet warns on critical SQL Injection bug after NCSC disclosure , and The Stack March 13, 2024
Cybersecurity CI/CD platform TeamCity exposed to critical pre-auth RCE bug, amid disclosure spat , and The Stack March 4, 2024
ConnectWise Leaked LockBit malware deployed in ScreenConnect attacks – 600+ IPs seen attacking 8,200 instances , and The Stack February 23, 2024
vulnerabilities CVSS 10 ConnectWise vulnerability “extremely trivial to reverse and exploit” as POC lands, attacks start , and The Stack February 21, 2024
Patch Tuesday February’s Patch Tuesday brings exploited zero days, Exchange Server headaches , and Edward Targett February 14, 2024
Ivanti Ivanti 0day fest continues with fresh bugs, attacks, as CISA tells federal agencies "just disconnect" , and Edward Targett February 2, 2024
vulnerabilities Exploit released for fresh Fortra GoAnywhere bug: CVSS 9.8 and again, nasty. Patch up. , and The Stack January 24, 2024
