Common Vulnerabilities and Exposures (CVE) stories - Page 11

Microsoft discloses a zero-day vulnerability in Outlook that has been exploited for almost a year to target organizations and critical infrastructure.

Check Point Software Technologies has released its Global Threat Index for February 2023, highlighting the return of the Remcos Trojan to the top ten list.

Claroty has uncovered 13 vulnerabilities in the Akuvox E11 smart intercom system, making the camera and microphone vulnerable and compromising video and images.

Global threat detections saw a massive 55% increase in 2022, with organisations and consumers targeted, according to Trend Micro.

Data is not just important to organisations; it is their 'crown jewel', and taking every step to protect it is vitally necessary.

The technology sector was a major target of ransomware in Q4 2022; and large IT providers are likely to be targeted in 2023.

Scaled ransomware attacks against manufacturing and geopolitical tensions brought increased attention to the industrial cyber threat landscape.

Rapid7 has released Metasploit Framework 6.3, adding native authentication, incorporating new modules for attacks and simplifying complex workflows.

New research from Nozomi Networks has found hacktivists shifted their tactics in 2022 from data theft and DDoS attacks to using more destructive malware.

Claroty's research team, Team82, has examined the GE Proficy Historian, finding five exploitable vulnerabilities capable of causing damage to the system.

GreyNoise Intelligence unveils its 2022 Mass Exploitation Report, delving deep into threat detection events from the past year.

Global security manufacturer Gallagher has been awarded the Security Software Manufacturer of the Year accolade at the 2022 Security & Fire Excellence Awards.

The telecom industry ranks globally as the most impacted by ransomware, followed by transportation and shipping.

This month saw keylogger AgentTesla take first place as the most widespread malware, impacting 7% of organisations worldwide.

A cyber-targeted operating model is a unique approach that provides defensibility, transparency, and accountability.

Apache's watchTowr Platform has identified dangerous string interpolation operators that could be abused by attackers. .

New vulnerability found in ABB TotalFlow flow computers and controllers exposes oil and gas utilities to potential attacks.

DevOps tools and infrastructure are facing increased attacks, with API vulnerabilities impacting security focus, according to a report by Wallarm.

It links individual vulnerabilities in ransomware operations, helping vulnerability management teams prevent potential cyber extortion events with VulnDB.

GitHub has announced a range of new products designed to accelerate the company's push into major enterprises at its San Francisco event.