Home Tags Zero-day

Tag: zero-day

‘High Risk’ Zero Day Leaves 200,000 Magento Merchants Vulnerable

A popular version of the Magento ecommerce platform is vulnerable to a remote code execution bug, putting as many as 200,000 online retailers at risk.

Office Zero Day Delivering FINSPY Spyware to Victims in Russia

Researchers have learned that the recently patched Office zero day was used to target victims in Russia with FINSPY spyware.

Baseband Zero Day Exposes Millions of Mobile Phones to Attack

A previously undisclosed baseband vulnerability impacting Huawei smartphones, laptop WWAN modules and IoT components was revealed Thursday at the Infiltrate Conference

Threatpost News Wrap, March 31, 2017

This year's Security Analyst Summit is previewed and the news of the week is discussed, including a Microsoft IIS zero day, a new Mirai variant, and the broadband privacy ruling.

New research reveals that 30 percent of malware attacks are zero...

WatchGuard Launches New Quarterly Internet Security Report30 March 2017: Thirty percent of malware can be classified as new or zero-day because it cannot be caught by legacy antivirus solutions, according to research published today in WatchGuard’s first Quarterly Internet Security Report, which explores the latest computer and network security threats affecting SMBs and distributed enterprises.

The results from Q4 2016, confirm that cyber criminals’ capability to automatically repack or morph their malware has outpaced the... Source: RealWire

Publicly Attacked Microsoft IIS Zero Day Unlikely to be Patched

Researchers have disclosed a zero-day vulnerability and proof-of-concept exploit for a flaw in Microsoft IIS 6.0.

The zero-day has been under attack since last July, the researchers said.

Mozilla Patches Pwn2Own Zero Day in Firefox

Mozilla patched a zero day uncovered at Pwn2Own in Firefox in 22 hours on Friday.

Zero Days Have Staying Power

A look at 200 zero day vulnerabilities reveals key details on longevity, value and how long it takes to create one after a software vulnerability has been identified.

Unpatched SMB Zero Day Easily Exploitable

Researchers claim the unpatched SMB zero day that affects Windows can be exploited a number of ways.

Threatpost News Wrap, February 3, 2017

Mike Mimoso and Chris Brook recap the news of the week, including a Microsoft SMB zero day, the latest Netgear router vulnerability, and a new HTTPS milestone.

Microsoft Waits for Patch Tuesday to Fix SMB Zero Day

Microsoft said a Windows SMB zero day, which has a public proof-of-concept exploit available, is low risk and won’t be patched until an upcoming Patch Tuesday.