Content Paint

vulnerabilities

Patch Tuesday: A “wormable” LDAP bug and two EOP zero days fixed

Lighter than last month, mercifully, but still some urgent fixes.

.NET bug being exploited in the wild

".NET Remoting is still around. Even where developers might not expect it such as in ASP.NET web applications, both on-premises and on Azure"

SonicWall zero day confirmed exploited in the wild

Affected devices “designed as an advanced secure access gateway for medium enterprises, multi-national corporations and managed security service providers (MSSPs.)”

Fortinet zero day confirmed. CVE allocated. Attackers tunnelling...

Authentication bypass to super admin. Gulp.

Ivanti zero day: 2,000 exposed; Anti-forensics draw attention

Factory reset devices after threat hunting even if NO compromise detected says CISA

Ivanti zero day CVE-2025-0282 exploited

Previously unseen malware being deployed, and UK's NCSC is "investigating cases of active exploitation affecting UK networks"

KEV turns up late to the party, carrying a bottle of 2020 Oracle

CVE-2020-2883: You patched that when you first heard about it, right? Ditto these Mitel Colab bugs...

Palo Alto Networks confirms mystery zero day now exploited:  Adds CVE, guidance.

You *still* didn't pull your PAN-OS interface off the public internet? Don't say you weren't warned...

PAN-OS vulnerability? Mebbe... bake in resilience.

Public advisory comes after alleged PAN-OS vulnerability advertised on exploit forum.

Search the site

Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.