vulnerabilities

IoT devices tend to greatly increase a company’s attack surface, but you can minimize the risk.

Researchers discuss the new cybercriminal tactic of downloading outdated binaries onto modern computers and exploiting their vulnerabilities.

Prioritize updating the apps that keep your devices and personal data safe from cyberattacks.

A zero-day vulnerability in Microsoft Windows may already have been exploited.

Files with the TXT extension are typically considered safe. Are they, though?

To stop all threats to the corporate infrastructure, you have to do more than just protect workstations.

A vulnerability in Google Chrome has already been exploited by malefactors. All users need to update to version 89.0.4389.90.

Hackers trying to inflict maximum reputation damage are sending out links to the data they stole through Accellion FTA vulnerabilities.

Attackers exploit four dangerous vulnerabilities in Microsoft Exchange to get a foothold in the corporate network.

Hackers are actively exploiting a dangerous vulnerability in Google Chrome. With Chrome 88.0.4324.150, Google has patched the vulnerability.

Version 14.4 patches vulnerabilities that cybercriminals are actively exploiting. Install this update as soon as possible.

No one should be using the dead technology, and any websites that still use it need an update.

“Zyfwp,” an admin-level account with a hard-coded password, discovered in several networking devices made by ZyXel.

The CVE-2020-1472 vulnerability in the Netlogon protocol, aka Zerologon, lets attackers hijack domain controllers.

Our technologies prevented an attack. Expert analysis revealed the exploitation of two previously unknown vulnerabilities. What you need to know.

Microsoft has released a patch for a critical RCE vulnerability in Windows Server systems.

Israeli experts claim that hundreds of millions of IoT devices contain critical vulnerabilities — and that’s the most conservative estimate.

To ensure that a vulnerability disclosure doesn’t cause more problems than it solves, we recommend a few simple principles.

Microsoft has posted a security advisory about vulnerabilities in Adobe Type Manager Library, which are already being exploited by cybercriminals.

Microsoft has released a patch for newly discovered critical vulnerability CVE-2020-0796 in the network protocol SMB 3.1.1.

On this podcast, Dave and Jeff discuss Windows 7’s end of life, a bug in the Windows CryptoAPI revealed by the NSA, Las Vegas hit with a cyberattack, and more.