Common Vulnerabilities and Exposures (CVE) stories - Page 11

After a seemingly slow quarter of ransomware activity during the late-2022 holiday season, there was alarming surge of activity in the first quarter of 2023.

The first two months of 2023 have seen a 41% increase in the average number of weekly attacks per organisation targeting IoT devices compared to 2022.

The CVE-2023-21554  vulnerability allows an attacker to potentially execute code remotely and without authorisation.

It is very important for businesses to download the latest patch from Microsoft as soon as possible, and use other methods of protection.

Recorded Future identifies five high-risk vulnerabilities, including four zero-days, affecting Microsoft, Adobe, Fortinet, and Samsung.

A new Emotet campaign is bypassing Microsoft blocks to distribute malicious OneNote files, according to Check Point Software Technologies.

Vectra AI introduces Vectra Match, bringing intrusion detection signature context to its hybrid cloud threat detection platform.

Future Market Insights (FMI) has released new research showing the virtual event platforms market is expected to grow to USD$17.05 billion by the end of 2028.

Vulnerabilities in Microsoft rose to an all-time high of 1,292 in 2022, according to BeyondTrust's latest report. @BeyondTrust #cybersecurity.

Microsoft discloses a zero-day vulnerability in Outlook that has been exploited for almost a year to target organizations and critical infrastructure.

Check Point Software Technologies has released its Global Threat Index for February 2023, highlighting the return of the Remcos Trojan to the top ten list.

Claroty has uncovered 13 vulnerabilities in the Akuvox E11 smart intercom system, making the camera and microphone vulnerable and compromising video and images.

Global threat detections saw a massive 55% increase in 2022, with organisations and consumers targeted, according to Trend Micro.

The technology sector was a major target of ransomware in Q4 2022; and large IT providers are likely to be targeted in 2023.

Scaled ransomware attacks against manufacturing and geopolitical tensions brought increased attention to the industrial cyber threat landscape.

Rapid7 has released Metasploit Framework 6.3, adding native authentication, incorporating new modules for attacks and simplifying complex workflows.

New research from Nozomi Networks has found hacktivists shifted their tactics in 2022 from data theft and DDoS attacks to using more destructive malware.

Claroty's research team, Team82, has examined the GE Proficy Historian, finding five exploitable vulnerabilities capable of causing damage to the system.

GreyNoise Intelligence unveils its 2022 Mass Exploitation Report, delving deep into threat detection events from the past year.

A new report from risk intelligence firm Flashpoint has found that Australia was the sixth most targeted country in the world for ransomware attacks.