SEARCH
Archive
Winter Vivern APT Targets Zero Day in Roundcube
The Winter Vivern APT group has been targeting a zero day XSS vulnerability in the Roundcube webmail server in recent weeks.
CISA Pushes Organizations to Patch Known Confluence Bug
CISA and the FBI are urging network administrators to apply patches for the Atlassian Confluence bug (CVE-2023-22515) immediately.
Ivanti Fixes Flaws in Enterprise Mobile Device Management Software
One of the more serious flaws in Ivanti's enterprise mobile device management platform could allow unauthenticated, remote attackers to execute code.
MOVEit Transfer Zero Day Under Attack
A critical zero day flaw in all version of MOVEit Transfer is under active attack by multiple threat actors.
Critical RCE Bug Fixed in ClamAV
A critical remote code execution vulnerability has been fixed in the ClamAV anti-malware engine.