vulnerabilities

Cybersecurity | Mar 14, 2023

Urgent: Microsoft 365 Apps being exploited in wild via CVSS 9.8 bug

Get domain admin by... just emailing the domain admin?

Cybersecurity | Mar 08, 2023

Veeam urges “immediate” updates after vulnerability exposes backup hosts

This may generate a lot of Black Hat interest...

Cybersecurity | Feb 28, 2023

Server backup vulnerability piggybacked to live systems

Open source bug leads to server backup bug leads to... crime.

Cybersecurity | Feb 08, 2023

Over 83,000 ESXi servers are internet-exposed as mass attack continues

VMware denies zero day being used

Cybersecurity | Jan 24, 2023

Severe Python vulnerability patched in 61,000 projects: Bug remains rife downstream

Heroic effort by Trellix but risks abound still...

Featured | Jan 09, 2023

We analysed 90,000+ software vulnerabilities: Here's what we learned

Can you guess the product with the most CVEs in 2022?

Cybersecurity | Dec 22, 2022

Will this CVSS 10 Linux Kernel vuln ruin your holiday?

We're hopeful that Betteridge's law applies...

Cloud | Oct 12, 2022

This Azure bug is a perfect CVSS 10, gives you control over K8s clusters

A critical vulnerability in an Azure tool that lets users manage Kubernetes clusters can be exploited remotely without authentication to gain administrative control over Kubernetes clusters, as well as Azure edge devices. The vulnerability, allocated a maximum possible CVSS (severity rating) score of 10 has been allocated CVE-2022-37968. It is

Cybersecurity | Aug 19, 2022

SAP systems are getting breached as attackers wake up to CVSS 10 bug

Exploits have circulated since February.

document.currentScript.parentNode.innerHTML = (parseInt(document.currentScript.closest('.iteration-container').dataset.length)).toString();