Common Vulnerabilities and Exposures (CVE) stories - Page 5

The Qualys Threat Research Unit has identified five critical vulnerabilities in needrestart used by Ubuntu Servers, risking unauthorized root access for users.

Tenable has disclosed a medium-severity SMB force-authentication vulnerability in all Windows versions of Open Policy Agent before version 0.68.0.

Leading cybersecurity agencies have issued an advisory identifying frequently exploited vulnerabilities in 2023, urging enhanced security measures across sectors.

Microsoft is rolling out patches for 90 vulnerabilities this November, including critical remote code execution flaws and several in-the-wild exploits.

Kaspersky has uncovered a sophisticated campaign by the Lazarus group targeting cryptocurrency investors, employing social engineering and zero-day exploits.

Tenable has revealed a medium-severity vulnerability in Open Policy Agent for Windows that exposes user credentials, urging updates to version 0.68.0.

Memory safety vulnerabilities are surging in industrial control systems, with over 3,000 reported in 2022, prompting urgent calls for enhanced security measures.

A coalition of global agencies warns of Iranian cyber threats targeting critical infrastructure, highlighting emerging tactics and unresolved vulnerabilities.

As digital transformation heightens cyber-physical connectivity, organisations must adopt effective exposure management strategies to safeguard critical systems.

Microsoft has addressed 118 vulnerabilities in its October 2024 Patch Tuesday, including five with evidence of exploitation, amid ongoing security concerns.

Tenable's 2024 Cloud Risk Report reveals 74% of global organisations have publicly exposed storage assets, heightening their ransomware risk.

Microsoft and Adobe have rolled out urgent security updates, tackling critical Zero-day vulnerabilities in Windows and key applications this month.

Microsoft's September Patch Tuesday addresses 79 vulnerabilities, including four critical RCEs and bugs with in-the-wild exploitation. Surprisingly, no browser patches yet.

Report reveals a 43% surge in vulnerabilities and a 6% rise in ransomware attacks in H1 2024, with VPNs and network infrastructure under significant threat.

GoWit unveils a self-service solution, enabling retailers to set up retail media advertising in just 15 minutes at no cost, after securing USD $1.3 million.

GitLab's annual survey exposes deep-rooted security frustrations, from prioritisation issues to excessive false positives. Here's how to tackle the core problems.

Fastly's latest report reveals a staggering 91% of cyberattacks targeted multiple customers this quarter, up from 69% in 2023, indicating a rise in mass scanning techniques.

The dismantling of Qakbot malware by the FBI has reshaped the malware loader landscape, with SocGholish now leading and security tactics evolving rapidly.

Microsoft patched 88 security flaws in October's Patch Tuesday, including seven critical and ten zero-day vulnerabilities.

Microsoft's August Patch Tuesday fixes 88 vulnerabilities, with evidence of in-the-wild exploitation and public disclosure for 10 of them.