Protect vSphere from specialised malware
Mandiant has published information on malware discovered in the wild that leverages unsigned VSphere Installation Bundles (VIB) to install backdoors...
Read moreMandiant has published information on malware discovered in the wild that leverages unsigned VSphere Installation Bundles (VIB) to install backdoors...
Read moreMicrosoft has confirmed that two recently reported zero-day vulnerabilities in Microsoft Exchange Server 2013, 2016, and 2019 (temporarily dubbed ProxyNotShell)...
Read moreService announcement: Microsoft published guidance for a newly discovered Zero-Day vulnerability within the Office Productivity Suite, which could be exploited...
Read moreA heap-based buffer overflow vulnerability in FortiOS SSL-VPN may allow a remote unauthenticated attacker to execute arbitrary code or commands...
Read moreVMware has fixed three critical vulnerabilities, alongside two fixes classed as important in the company’s December Patch Tuesday update. The...
Read moreIn the December 2022 Patch Tuesday, Citrix has fixed a critical zero-day vulnerability in Citrix ADC and Gateway that is...
Read moreGoogle has fixed four critical vulnerabilities, in December 2022’s Patch Tuesday, 81 flaws in total (CVE-2022-20472, CVE-2022-20473, CVE-2022-20411, CVE-2022-20498). The...
Read moreService announcement: VMware patched a high severity local privilege escalation security flaw (CVE-2022-22972) that allows attackers to elevate permissions on...
Read moreService announcement: Microsoft released a number of patches earlier this week, including a patch for a zero-day exploit being tracked...
Read moreThe FBI, CISA, and US Treasury Department have released a joint advisory surrounding the North Korean state-sponsored attacks on health...
Read moreService announcement: VMware has advised customers to immediately patch critical vulnerabilities across multiple products to protect against the risk of...
Read moreService announcement: zero-day vulnerability found in VMware’s Spring Framework, dubbed ‘Spring4Shell’. Caused by “unsafe deserialization of passed arguments”, the threat...
Read moreService announcement: we have been made aware of a remote code execution vulnerability in Apache Log4j 2. Please be assured...
Read more