CISA urges orgs to patch actively exploited Windows SeriousSAM bug
The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added to the catalog of vulnerabilities another 15 security issues actively…
Microsoft starts killing off WMIC in Windows, will thwart attacks
Microsoft is moving forward with removing the Windows Management Instrumentation Command-line (WMIC) tool, wmic.exe, starting with the latest Windows 11…
FritzFrog botnet grows 10x, hits healthcare, edu, and govt systems
The FritzFrog botnet that's been active for more than two years has resurfaced with an alarming infection rate, growing ten…
Wave of MageCart attacks target hundreds of outdated Magento sites
Analysts have found the source of a mass breach of over 500 e-commerce stores running the Magento 1 platform and…
CISA warns admins to patch maximum severity SAP vulnerability
The US Cybersecurity and Infrastructure Security Agency (CISA) has warned admins to patch a set of severe security flaws dubbed ICMAD (Internet…
Fake Windows 11 upgrade installers infect you with RedLine malware
Threat actors have started distributing fake Windows 11 upgrade installers to users of Windows 10, tricking them into downloading and…
Microsoft Issues 51 CVEs for Patch Tuesday, None ‘Critical’
One publicly known flaw — an elevation-of-privilege bug in Windows Kernel — was included in the patches.
Microsoft Patch Tuesday, February 2022 Edition
Microsoft today released software updates to plug security holes in its Windows operating systems and related software. This month's relatively…
Kimsuki hackers use commodity RATs with custom Gold Dragon malware
South Korean researchers have spotted a new wave of activity from the Kimsuky hacking group, involving commodity open-source remote access…
Vulnerability Scanning Triples, Leading to Two-Thirds Fewer Flaws
Companies are scanning more applications for vulnerabilities — and more often.