web analytics
VULNERABILITIES Notepads & resources
CSO - Online
Google patches third zero-day flaw in Chrome this year – Source: www.csoonline.com
Google patches third zero-day flaw in Chrome this year – Source: www.csoonline.com
CSO - Online
CISA flags Commvault zero-day as part of wider SaaS attack campaign – Source: www.csoonline.com
CISA flags Commvault zero-day as part of wider SaaS attack campaign – Source: www.csoonline.com
CSO - Online
Ethical hackers exploited zero-day vulnerabilities against popular OS, browsers, VMs and AI frameworks – Source: www.csoonline.com
Ethical hackers exploited zero-day vulnerabilities against popular OS, browsers, VMs and AI frameworks – Source:...
CSO - Online
Ivanti patches two EPMM flaws exploited in the wild – Source: www.csoonline.com
Ivanti patches two EPMM flaws exploited in the wild – Source: www.csoonline.com
CSO - Online
Patch Tuesday for May: Five zero day vulnerabilities CISOs should focus on – Source: www.csoonline.com
Patch Tuesday for May: Five zero day vulnerabilities CISOs should focus on – Source: www.csoonline.com
CSO - Online
Windows flaw exploited as zero-day by more groups than previously thought – Source: www.csoonline.com
Windows flaw exploited as zero-day by more groups than previously thought – Source: www.csoonline.com
CSO - Online
Kritische Zero-Day-Schwachstelle in SAP NetWeaver – Source: www.csoonline.com
Kritische Zero-Day-Schwachstelle in SAP NetWeaver – Source: www.csoonline.com
CSO - Online
Enterprise-specific zero-day exploits on the rise, Google warns – Source: www.csoonline.com
Enterprise-specific zero-day exploits on the rise, Google warns – Source: www.csoonline.com
CSO - Online
SAP NetWeaver customers urged to deploy patch for critical zero-day vulnerability – Source: www.csoonline.com
SAP NetWeaver customers urged to deploy patch for critical zero-day vulnerability – Source: www.csoonline.com
securelist.com
Operation SyncHole: Lazarus APT goes back to the well – Source: securelist.com
Operation SyncHole: Lazarus APT goes back to the well – Source: securelist.com
Security TechRepublic
Apple Patches Two Zero-Days Used in ‘Extremely Sophisticated’ Attacks – Source: www.techrepublic.com
Apple Patches Two Zero-Days Used in ‘Extremely Sophisticated’ Attacks – Source: www.techrepublic.com
securelist.com
How ToddyCat tried to hide behind AV software – Source: securelist.com
How ToddyCat tried to hide behind AV software – Source: securelist.com
Security TechRepublic
Benchmarks Find ‘DeepSeek-V3-0324 Is More Vulnerable Than Qwen2.5-Max’ – Source: www.techrepublic.com
Benchmarks Find ‘DeepSeek-V3-0324 Is More Vulnerable Than Qwen2.5-Max’ – Source: www.techrepublic.com
securelist.com
Operation ForumTroll: APT attack with Google Chrome zero-day exploit chain – Source: securelist.com
Operation ForumTroll: APT attack with Google Chrome zero-day exploit chain – Source: securelist.com
CSO - Online
New Windows zero-day feared abused in widespread espionage for years – Source: www.csoonline.com
New Windows zero-day feared abused in widespread espionage for years – Source: www.csoonline.com
CSO - Online
About 22k WAB customers impacted by a zero-day attack on a third-party vendor – Source: www.csoonline.com
About 22k WAB customers impacted by a zero-day attack on a third-party vendor – Source:...
CSO - Online
Microsoft patches privilege escalation flaw exploited since 2023 – Source: www.csoonline.com
Microsoft patches privilege escalation flaw exploited since 2023 – Source: www.csoonline.com
CSO - Online
March Patch Tuesday warnings: Act fast to plug zero day holes in Windows, VMware – Source: www.csoonline.com
March Patch Tuesday warnings: Act fast to plug zero day holes in Windows, VMware –...
CSO - Online
VMware ESXi gets critical patches for in-the-wild virtual machine escape attack – Source: www.csoonline.com
VMware ESXi gets critical patches for in-the-wild virtual machine escape attack – Source: www.csoonline.com
Security Boulevard
The hidden threat: Tackling malware in your software supply chain – Source: securityboulevard.com
The hidden threat: Tackling malware in your software supply chain – Source: securityboulevard.com
CSO - Online
Palo Alto Networks firewall bug being exploited by threat actors: Report – Source: www.networkworld.com
Palo Alto Networks firewall bug being exploited by threat actors: Report – Source: www.networkworld.com
CSO - Online
PostgreSQL patches SQLi vulnerability likely exploited in BeyondTrust attacks – Source: www.csoonline.com
PostgreSQL patches SQLi vulnerability likely exploited in BeyondTrust attacks – Source: www.csoonline.com
CSO - Online
Fortinet confirms zero-day flaw used in attacks against its firewalls – Source: www.csoonline.com
Fortinet confirms zero-day flaw used in attacks against its firewalls – Source: www.csoonline.com
CSO - Online
Ivanti zero-day exploited by APT group that previously targeted Connect Secure appliances – Source: www.csoonline.com
Ivanti zero-day exploited by APT group that previously targeted Connect Secure appliances – Source: www.csoonline.com
CSO - Online
Ivanti warns critical RCE flaw in Connect Secure exploited as zero-day – Source: www.csoonline.com
Ivanti warns critical RCE flaw in Connect Secure exploited as zero-day – Source: www.csoonline.com
CSO - Online
Attackers exploit zero-day RCE flaw in Cleo managed file transfer – Source: www.csoonline.com
Attackers exploit zero-day RCE flaw in Cleo managed file transfer – Source: www.csoonline.com
securelist.com
Exploits and vulnerabilities in Q3 2024 – Source: securelist.com
Exploits and vulnerabilities in Q3 2024 – Source: securelist.com
securelist.com
APT trends report Q3 2024 – Source: securelist.com
APT trends report Q3 2024 – Source: securelist.com
CSO - Online
Palo Alto Networks zero-day firewall flaws caused by basic dev mistakes – Source: www.csoonline.com
Palo Alto Networks zero-day firewall flaws caused by basic dev mistakes – Source: www.csoonline.com
securelist.com
Сrimeware and financial cyberthreats in 2025 – Source: securelist.com
Сrimeware and financial cyberthreats in 2025 – Source: securelist.com
CSO - Online
November 2024 Patch Tuesday patches four zero days and three critical flaws – Source: www.csoonline.com
November 2024 Patch Tuesday patches four zero days and three critical flaws – Source: www.csoonline.com
CSO - Online
PSAUX ransomware takes down 22,000 CyberPanel servers in massive zero-day attack – Source: www.csoonline.com
PSAUX ransomware takes down 22,000 CyberPanel servers in massive zero-day attack – Source: www.csoonline.com
CSO - Online
Critical Fortinet vulnerability finds zero-day RCE exploits – Source: www.csoonline.com
Critical Fortinet vulnerability finds zero-day RCE exploits – Source: www.csoonline.com
CSO - Online
VMware patches security vulnerability twice – Source: www.csoonline.com
VMware patches security vulnerability twice – Source: www.csoonline.com
Security TechRepublic
Threat Actors Are Exploiting Vulnerabilities Faster Than Ever – Source: www.techrepublic.com
Threat Actors Are Exploiting Vulnerabilities Faster Than Ever – Source: www.techrepublic.com
securelist.com
The Crypto Game of Lazarus APT: Investors vs. Zero-days – Source: securelist.com
The Crypto Game of Lazarus APT: Investors vs. Zero-days – Source: securelist.com
CSO - Online
Mozilla reveals critical vulnerability in Firefox – Source: www.csoonline.com
Mozilla reveals critical vulnerability in Firefox – Source: www.csoonline.com
securelist.com
QakBot attacks with Windows zero-day (CVE-2024-30051) – Source: securelist.com
QakBot attacks with Windows zero-day (CVE-2024-30051) – Source: securelist.com
Security TechRepublic
New GoFetch Vulnerability in Apple’s M Chips Allows Secret Keys Leak on Compromised Computers – Source: www.techrepublic.com
New GoFetch Vulnerability in Apple’s M Chips Allows Secret Keys Leak on Compromised Computers –...
Security TechRepublic
Newly Discovered Ivanti Secure VPN Zero-Day Vulnerabilities Allow Chinese Threat Actor to Compromise Systems – Source: www.techrepublic.com
Newly Discovered Ivanti Secure VPN Zero-Day Vulnerabilities Allow Chinese Threat Actor to Compromise Systems –...
securelist.com
Operation Triangulation: The last (hardware) mystery – Source: securelist.com
Operation Triangulation: The last (hardware) mystery – Source: securelist.com
Security TechRepublic
ESET Threat Report: ChatGPT Name Abuses, Lumma Stealer Malware Increases, Android SpinOk SDK Spyware’s Prevalence – Source: www.techrepublic.com
ESET Threat Report: ChatGPT Name Abuses, Lumma Stealer Malware Increases, Android SpinOk SDK Spyware’s Prevalence...
Security Boulevard
Unraveling the Struts2 security vulnerability: A deep dive – Source: securityboulevard.com
Unraveling the Struts2 security vulnerability: A deep dive – Source: securityboulevard.com
securelist.com
Windows CLFS and five exploits used by ransomware operators (Exploit #4 – CVE-2023-23376) – Source: securelist.com
Windows CLFS and five exploits used by ransomware operators (Exploit #4 – CVE-2023-23376) – Source:...
securelist.com
Windows CLFS and five exploits used by ransomware operators (Exploit #3 – October 2022) – Source: securelist.com
Windows CLFS and five exploits used by ransomware operators (Exploit #3 – October 2022) –...
securelist.com
Windows CLFS and five exploits used by ransomware operators (Exploit #2 – September 2022) – Source: securelist.com
Windows CLFS and five exploits used by ransomware operators (Exploit #2 – September 2022) –...
securelist.com
Windows CLFS and five exploits used by ransomware operators – Source: securelist.com
Windows CLFS and five exploits used by ransomware operators – Source: securelist.com
securelist.com
Windows CLFS and five exploits used by ransomware operators (Exploit #1 – CVE-2022-24521) – Source: securelist.com
Windows CLFS and five exploits used by ransomware operators (Exploit #1 – CVE-2022-24521) – Source:...
securelist.com
Windows CLFS and five exploits used by ransomware operators (Exploit #5 – CVE-2023-28252) – Source: securelist.com
Windows CLFS and five exploits used by ransomware operators (Exploit #5 – CVE-2023-28252) – Source:...
Prancer
Developer´s Guide to OWASP – Top 10 API Security vulnerabilities & MITRE ATT&ACK framework relation – Go Lang Edition by Farshid Mahdavipour , Kumar Chandramoulie , Joe Vadakkan
Developer´s Guide to OWASP – Top 10 API Security vulnerabilities & MITRE ATT&ACK framework relation...
Security Boulevard
iPhone/iPad Warning: Update Now to Avoid Zero-Day Pain – Source: securityboulevard.com
iPhone/iPad Warning: Update Now to Avoid Zero-Day Pain – Source: securityboulevard.com
Wallarm
DevOps Tools and Insfrastructure Under Attack by Wallarm
DevOps Tools and Insfrastructure Under Attack by Wallarm
Security TechRepublic
How to add the Docker Scout feature to the Docker CLI – Source: www.techrepublic.com
How to add the Docker Scout feature to the Docker CLI – Source: www.techrepublic.com
Security TechRepublic
Zero-day MOVEit Transfer vulnerability exploited in the wild, heavily targeting North America – Source: www.techrepublic.com
threatpost
iPhone Users Urged to Update to Patch 2 Zero-Days – Source: threatpost.com
iPhone Users Urged to Update to Patch 2 Zero-Days – Source: threatpost.com
threatpost
Google Patches Chrome’s Fifth Zero-Day of the Year – Source: threatpost.com
Google Patches Chrome’s Fifth Zero-Day of the Year – Source: threatpost.com
securelist.com
Nokoyawa ransomware attacks with Windows zero-day – Source: securelist.com
Nokoyawa ransomware attacks with Windows zero-day – Source: securelist.com
Security TechRepublic
IBM launches QRadar Security Suite for accelerated threat detection and response – Source: www.techrepublic.com
IBM launches QRadar Security Suite for accelerated threat detection and response – Source: www.techrepublic.com
Cyber Chief Magazine
Prevent Mallware with System Hardering – Strengthen Security by Cyber Chief Magazine
Prevent Mallware with System Hardering – Strengthen Security by Cyber Chief Magazine
Khoury-Avila-Brunelle-Mamadou
How Secure is Code Generated by ChatGPT ? by Khoury-Avila-Brunelle-Mamadou
How Secure is Code Generated by ChatGPT ? by Khoury-Avila-Brunelle-Mamadou
Security TechRepublic
Ransomware attacks increased 91% in March, as threat actors find new vulnerabilities
Ransomware attacks increased 91% in March, as threat actors find new vulnerabilities
SecurityAffairs.com
Google fixed the first Chrome zero-day of 2023
Google fixed the first Chrome zero-day of 2023
Security TechRepublic
Phishing from threat actor TA473 targets US and NATO officials
Phishing from threat actor TA473 targets US and NATO officials
The Hacker News
thehackernews – CISA Adds Single-Factor Authentication to the List of Bad Practices
thehackernews – CISA Adds Single-Factor Authentication to the List of Bad Practices
MORE RESOURCES
CISO Strategics
cyber operations & soc
red - blue & purple teams
THREAT INTELLIGENCE
VULNERABILITIES
CYBER ATTACKS
DATA BREACH
MALLWARE
RANSOMWARE
DDOS ATTACKS
CLOUD SECURITY
IOT SECURITY
ot security
devsecops
hacking
risk & compliance
governance
data privacy
MORE CISO2CISO RESOURCES LIBRARY TO VIEW
CISO Strategics
SOC OPERATIONS
THREAT INTELLIGENCE
vulnerabilities
cyber attacks
RansoNWARE
DDOS ATTACKS
RED - BLUE & PURPLE
DATA BREACH
DATA PRIVACY
CLOUD SECURITY
IOT - OT SECURITY
RISK & COMPLIANCE
DEVSECOPS

Views: 2