Microsoft Patch Tuesday fixes 3 exploited zero-days and 77 others
Microsoft's February 2023 Patch Tuesday landed on Valentine's Day and brought security updates that fixed three actively exploited zero-day vulnerabilities and about 77 other flaws. Of the 77, nine have been classified as 'Critical' because they allow remote code execution on affected devices.
T... Read more
Microsoft Patch Tuesday squashes six active zero-day exploits
The latest Microsoft Patch Tuesday resolved as many as six zero-day exploits. In total, the updates fixed 68 different vulnerabilities.
11 out of 68 vulnerabilities resolved were labelled as critical. Among the critical vulnerabilities are six active zero-day exploits.
Two of the zero-day exp... Read more
‘Cyberattacks were increasingly frequent and complex in 2021’
Both the volume and complexity of cyberattacks increased significantly in the past year. This is concluded in a Cisco security study of 2021.
Researchers registered 36 percent more attacks than in 2020. Respondents were most affected by ransomware, which is seen as the biggest threat. Companies'... Read more
‘South Korea hacked North Koreans through 5 zero-day weaknesses’
Five Zero-Day vulnerabilities are said to have been used over the past year to hack targets in North Korea, according to researchers from the Google Threat Analysis Group. While Google itself makes no statements about who is behind the attacks, cyber security firm Kaspersky points to neighbouring S... Read more
Windows vulnerability abused to launch targeted attack
A new zero-day vulnerability (CVE-2019-1458) in Windows, discovered by antivirus company Kaspersky, has been used during the cyber attack Operation WizardOpium. With this vulnerability, malicious parties can bypass the security mechanisms in Google Chrome.
Kaspersky's exploit prevention encounte... Read more
D66 calls for stricter rules for hacks government via zero days
D66 Member of Parliament Kees Verhoeven wants stricter rules for the use of certain weapons for hacking by the police, secret services and the army. This specifically concerns tools that can abuse zero days - vulnerabilities in software that are not yet known. That's what the NOS says.
Zero day err... Read more