Displaying items by tag: Zeroday

Google has issued a patch for the fifth zero-day flaw in its Chrome browser this year, preventing attackers from executing malicious code on users' devices.

Apparently stung by the criticism of both vendors and security practitioners over the lack of logs to analyse a recent breach of its cloud service, Microsoft has backed down to some extent on charging customers for providing access to logging services.

Microsoft has rolled out patches for 67 vulnerabilities in its products in its monthly Patch Tuesday, including a fix for a zero-day that is being exploited in the wild.

Apple has issued a patch for a vulnerability in the kernel of its iOS and macOS operating systems, originally a zero-day, warning that it affected devices running iOS 13, and also the macOS Catalina platform.

Microsoft has revealed details of another zero-day attack on its Office software, releasing an advisory prior to issuing a patch for the flaw.

Search giant Google has been forced to patch yet another zero-day in its Chrome browser, the fourth this year, but the company has not provided any indicators of compromise or other details n its advisory.

Just a day after an Indian researcher released details of a one-day bug in Google's Chrome browser, a Chinese researcher known as frust has released a zero-day for the same browser.

It's 2020, and daily cyberattacks are the norm for companies these days, as nature's viruses join those from the world of tech to bring forth humanity's biggest challenges yet, but Acronis has risen to the cyber protection challenge.

Microsoft has warned of a zero-day flaw in the Adobe Type Manager Library which is being actively exploited on Windows systems that are up-to-date.

Google has released a fix for a high-severity vulnerability in its Chrome browser. The bug is currently being exploited in the wild on Windows 10 systems.

An unknown developer has published details of a zero-day exploit in the popular vBulletin forum software on the Full Disclosure mailing list, raising fears that there may be a spate of attacks across the Internet.

Exploit vendor Zerodium, which made headlines in September last year by offering a million-dollar bounty for any zero-day exploits in the Tor browser running on Tails Linux or Windows, has itself released a zero-day exploit for the browser.

A new Adobe Flash zero-day exploit that works through a Microsoft Office document and delivers the latest version of the FinSpy malware as its final payload has been identified by security vendor Kaspersky Lab.

McAfee Security has jumped the gun on disclosure of a zero-day vulnerability in Microsoft Word that the security company FireEye was discussing with Microsoft and awaiting release of a patch before divulging details.

Cisco has released details of a vulnerability in its IOS and IOS XE software that would allow remote exploitation of any one of 318 of its routers.

A zero-day exploit for all versions of Windows was released two weeks ago, but Microsoft does not appear to be seized of this, announcing that it will release security updates which were meant for this month on 14 March.

Security firm Exodus Intelligence has trumped Apple in the bug bounty area, offering as much as half a million American dollars for zero-day iOS exploits.

Unlike most products, software is offered without any kind of warranty, and when you see how many bugs and vulns software has, it’s obvious why.