active exploit – WindowsTechs.com

Cybercriminals Ramp Up Exploits Against Serious Zyxel Flaw

Posted on January 6, 2021 by Lindsey O'Donnell

More than 100,000 Zyxel networking products could be vulnerable to a hardcoded credential vulnerability (CVE-2020-29583) potentially allowing cybercriminal device takeover. Continue reading Cybercriminals Ramp Up Exploits Against Serious Zyxel Flaw→

Oracle WebLogic Server RCE Flaw Under Active Attack

Posted on October 29, 2020 by Lindsey O'Donnell

The flaw in the console component of the WebLogic Server, CVE-2020-14882, is under active attack, researchers warn. Continue reading Oracle WebLogic Server RCE Flaw Under Active Attack→

Microsoft Zerologon Flaw Under Attack By Iranian Nation-State Actors

Posted on October 6, 2020 by Lindsey O'Donnell

Microsoft warns that the MERCURY APT has been actively exploiting CVE-2020-1472 in campaigns for the past two weeks. Continue reading Microsoft Zerologon Flaw Under Attack By Iranian Nation-State Actors→

Microsoft Exchange Servers Still Open to Actively Exploited Flaw

Posted on September 30, 2020 by Lindsey O'Donnell

Despite Microsoft issuing patches almost eight months ago, 61 percent of Exchange servers are still vulnerable. Continue reading Microsoft Exchange Servers Still Open to Actively Exploited Flaw→

Admins Urged to Patch Critical F5 Flaw Under Active Attack

Posted on July 6, 2020 by Lindsey O'Donnell

Security experts and the U.S. Cyber Command are urging admins to update a critical flaw in F5 Networks, which is under active attack. Continue reading Admins Urged to Patch Critical F5 Flaw Under Active Attack→

Oracle: Unpatched Versions of WebLogic App Server Under Active Attack

Posted on May 4, 2020 by Lindsey O'Donnell

CVE-2020-2883 was patched in Oracle’s April 2020 Critical Patch Update – but proof of concept exploit code was published shortly after. Continue reading Oracle: Unpatched Versions of WebLogic App Server Under Active Attack→

April Patch Tuesday: Microsoft Battles 4 Bugs Under Active Exploit

Posted on April 14, 2020 by Tara Seals

Microsoft issued 113 patches in a big update, unfortunately for IT staff already straining under WFH security concerns. Continue reading April Patch Tuesday: Microsoft Battles 4 Bugs Under Active Exploit→

Microsoft Warns of Critical Windows Zero-Day Flaws

Posted on March 23, 2020 by Lindsey O'Donnell

The unpatched Windows zero day flaws are being exploited in “limited, targeted” attacks, according to Microsoft. Continue reading Microsoft Warns of Critical Windows Zero-Day Flaws→

Trend Micro Fixes Critical Flaws Under Attack

Posted on March 18, 2020 by Lindsey O'Donnell

Fixes are now available for five critical and high-severity Trend Micro flaws, two of which are being actively targeted by attackers. Continue reading Trend Micro Fixes Critical Flaws Under Attack→

Active Exploits Hit Vulnerable WordPress ThemeGrill Plugin

Posted on February 18, 2020 by Lindsey O'Donnell

Websites using a vulnerable version of the WordPress plugin, ThemeGrill Demo Importer, are being targeted by attackers. Continue reading Active Exploits Hit Vulnerable WordPress ThemeGrill Plugin→