SEARCH
Archive
Zero Day Initiative Changes Disclosure Policy For Faulty Patches
The Zero Day Initiative cited a decrease in patch quality that is leading to many issued fixes being faulty or incomplete.
CISA Issues Emergency Directive For Log4j Flaw
Federal agencies have until Dec. 23 to track down systems vulnerable to Log4j and apply patches or mitigations.
Ongoing Attacks Target SAP Flaws, Unsecured Accounts
Attackers are targeting SAP enterprise applications that have not been updated to address previously-fixed flaws, researchers warn.
Enterprises Should Fix These 25 Flaws
Enterprise IT staff should prioritize fixing the flaws listed in the Top 25 list of most commonly targeted vulnerabilities released by the United States National Security Agency.
Attackers Actively Targeting Zerologon Flaw, Microsoft Warns
The Zerologon vulnerability Microsoft patched in Windows Server last month is actively being exploited in several attacks, Microsoft warned.