Security researchers have found a bug that could allow attackers to deliver malware directly into employees' Microsoft Teams inbox.
The Swiss government is under DDoS attacks, but several ransomware gangs have also turned their sights on other Swiss organizations.
A vulnerability (CVE-2023-2868) in Barracuda Networks' ESG appliances is actively exploited by attackers, the company has warned.
A vulnerability (CVE-2023-32784) in KeePass can be exploited to retrieve the master password from the software's memory.
Resecurity has recently identified the STYX Innovation Marketplace, a new cybercriminal e-commerce platform focused on financial fraud.
For March 2023 Patch Tuesday Microsoft has fixed 2 vulnerabilities actively exploited in the wild (CVE-2023-23397, CVE-2023-24880).
A PoC exploit for CVE-2023-21716, a critical RCE vulnerability in Microsoft Word that can be exploited when the user previews a specially crafted RTF document, is now publicly available.
An unauthenticated RCE flaw (CVE-2022-27518) is being leveraged by APT5 to compromise Citrix ADC deployments.
The rising adoption of connected medical devices is accelerating cyberattacks, according to Capterra’s Medical IoT Survey.
November 2022 Patch Tuesday is here, with fixes for CVE-2022-41091, CVE-2022-41049, CVE-2022-41128 and other actively exploited bugs.