zero-day exploit

The second-biggest security update released by Microsoft this year featured 17 critical-rated RCEs and privilege escalation bugs

The month's list of 84 bug fixes has been branded "boring" by some experts but should be welcome news to security personnel

The zero-day code execution vulnerability was discovered last week and cyber attackers are already capitalising on the proof-of-concept code

Hafnium's devastating zero-day exploit chain in 2021 forced Microsoft to improve the security of current versions instead of releasing the new one on …

Microsoft has published a support guide and temporary workarounds for IT admins to mitigate the threat

Malicious documents saved in Rich Text Format are especially concerning since they can execute code without even being opened

Analysis shows large proportion of Macs in operation remain unprotected to the actively exploited flaws patched last week

Flaws have been fixed on iPhones, iPads, and Macs, as well as undisclosed vulnerabilities on Apple TV and Apple Watch devices

With proof-of-concept code out in the wild, businesses are encouraged to assess their exposure to what's being dubbed 'Log4Shell 2.0'

Google acted quickly to secure against the type confusion vulnerability that was under active exploitation

Investigation unveils the inner workings of one access broker that helped two of the most-hated ransomware gangs in history

The increased rewards are said to align better with the community's expectations of a bug bounty programme of this kind

The security flaw allowed code execution on a range of devices and represents the third major vulnerability to be patched by Apple this year

Microsoft will be hoping for a bug-free round of patches after admins complained of January's updates breaking more components than they fixed

The first wave of security updates for Apple products in 2022 follows a year in which a wide variety of security flaws plagued its portfolio of device…

Microsoft has kicked off 2022 with a score of security fixes for critical-rated vulnerabilities in some of the most widely used products used by busin…

The critical flaw affecting products built using Java is set to cause headaches in the enterprise for months to come

Researchers detail how much the Log4J vulnerability is being exploited and who is being targeted the most

Mozilla's browser now takes a more granular approach to walling off code

The exploit allows hackers to elevate privileges and create admin accounts

New report finds cyber criminals automating exploit creation to help less capable hackers

Elevation-of-privilege flaw could enable Chinese hackers to mount widespread spying campaign