News Academics warn over "problematic metrics and documentation" in CVSS system , and Shaun Nichols September 1, 2023
News Adobe patch nightmare: Trio of application server vulnerabilities being exploited , and Ed Targett August 22, 2023
vulnerabilities CVE for “Damn Vulnerable Web Application” rejected after troubling, bemusing hackers , and Ed Targett August 19, 2023
News When airplane mode isn't airplane mode: iOS malware spoofs standby , and Shaun Nichols August 18, 2023
vulnerabilities Citrix ShareFile vulnerability being exploited amid warnings of a “huge spike” in attacks , and The Stack August 16, 2023
cybersecurity Most exploited vulnerabilities 2022: Five Eyes’ list of CVEs comes with a twist in the tail , and Ed Targett August 7, 2023
Citrix Citrix zero day used to attack critical infrastructure -- IOCs and detections now available , and Ed Targett July 21, 2023
Citrix Critical pre-auth RCE Citrix Gateway vulnerability is under active attack and looks bad , and The Stack July 18, 2023
sonicwall Critical SonicWall vulnerabilities "extremely attractive" - central firewall hub needs urgent patching , and Ed Targett July 14, 2023
MOVEit Fuzzy Thinking: Yet more critical SQL Injection bugs in MOVEIt Transfer , and Ed Targett July 7, 2023
vulnerabilities This critical vulnerability is an “open door into your network” and being exploited. Why didn’t RUCKUS Networks register a CVE? , and Ed Targett July 3, 2023
MOVEit As victim count mounts, a critical new MOVEit bug emerges - with US federal agencies compromised , and Ed Targett June 16, 2023
Fortinet MFA is no protection against this critical new Fortinet vulnerability, CVE-2023-27997 , and Ed Targett June 12, 2023
News UPDATED: File transfer software under active attack. Banks, gov't hit as CVE, new IOCs released , and Ed Targett June 5, 2023