Exchange, Teams, Zoom, Hacked at Pwn2Own 2021
The annual hacking competition will see 23 attempts against operating systems, virtualization software, and browsers.
The annual hacking competition will see 23 attempts against operating systems, virtualization software, and browsers.
APT groups increasingly targeted CVE-2018-13379, CVE-2020-12812 and CVE-2019-5591 last month.
Attackers have been actively exploiting a recently uncovered command injection bug in VMware products to access protected data.
Just days after fixing two zero day vulnerabilities, Google has rolled out yet another version of its Chrome browser, resolving a fix for last month's NAT Slipstream attack.
In hopes that enterprises patch them, the NSA shared a list of 25 vulnerabilities currently being targeted by Chinese hackers.
A new, potentially wormable remote code execution vulnerability in the Windows TCP/IP stack was patched this week.
CISA is warning that attackers are chaining together the recent Netlogon vulnerability, along with VPN vulnerabilities, to hack government networks.
In a rare emergency directive, CISA asked all federal agencies to immediately deploy last month's Windows Security Update to remediate a critical vulnerability in Netlogon.
Details on Friday came out around a severe privilege escalation vulnerability Microsoft patched last month in Netlogon. Now exploit code for the vulnerability, Zerologon, is making the rounds online.
The FBI warned organizations last week that an Iranian hacking group has been targeting vulnerable networking devices for a month.