Patch Tuesday, November 2022 Election Edition
Let's face it: Having “2022 election” in the headline above is probably the only reason anyone might read this story…
Malicious extension lets attackers control Google Chrome remotely
A new Chrome browser botnet named 'Cloud9' has been discovered in the wild using malicious extensions to steal online accounts,…
Microsoft Quashes Bevy of Actively Exploited Zero-Days for November Patch Tuesday
Long-awaited security fixes for ProxyNotShell and Mark of the Web bypasses are part of a glut of actively exploited zero-day…
Microsoft fixes ProxyNotShell Exchange zero-days exploited in attacks
Microsoft has released security updates to address two high-severity Microsoft Exchange zero-day vulnerabilities collectively known as ProxyNotShell and exploited in…
The Artificial Intelligence Tug-of-War: Adversaries vs. Defenders
By Corey Nachreiner, CSO at WatchGuard Technologies Artificial intelligence (AI) is playing an increasingly important role in cybersecurity. […] The…
Microsoft Warns on Zero-Day Spike as Nation-State Groups Shift Tactics
The software giant also recorded an increase in attacks on IT services companies as state-backed threat actors have adapted to…
Supply Chain Attack Pushes Out Malware to More than 250 Media Websites
TA569 has modified the JavaScript of a legitimate content and advertising engine used by news affiliates, in order to spread…
Patch Now: Dangerous RCE Bug Lays Open ConnectWise Server Backup Managers
A critical security vulnerability gives attackers a way to compromise thousands of systems at ConnectWise's managed service provider (MSP) customer…
ConnectWise fixes RCE bug exposing thousands of servers to attacks
ConnectWise has released security updates to address a critical vulnerability in the ConnectWise Recover and R1Soft Server Backup Manager (SBM)…
The Week in Ransomware – October 28th 2022 – Healthcare leaks
This week, we learned of healthcare data leaks out of Australia, information about existing attacks, and reports on how ransomware…