Tens of thousands of IPs vulnerable to Fortinet flaw dubbed ‘must patch’ by feds

The Shadowserver Foundation put the figure at around 87,000 for a vulnerability rated as critical and first discovered in February.

The post Tens of thousands of IPs vulnerable to Fortinet flaw dubbed ‘must patch’ by feds appeared first on CyberScoop.

Continue reading Tens of thousands of IPs vulnerable to Fortinet flaw dubbed ‘must patch’ by feds

CISA warns of hackers exploiting bug for end-of-life Ivanti product

Ivanti’s Cloud Service Appliance has a “high severity vulnerability” being exploited in the wild.

The post CISA warns of hackers exploiting bug for end-of-life Ivanti product appeared first on CyberScoop.

Continue reading CISA warns of hackers exploiting bug for end-of-life Ivanti product

Here’s what Microsoft fixed in September’s Patch Tuesday

The tech giant’s regular vulnerability list includes new vulnerabilities for Windows Updater and Installer.

The post Here’s what Microsoft fixed in September’s Patch Tuesday appeared first on CyberScoop.

Continue reading Here’s what Microsoft fixed in September’s Patch Tuesday

Plan to resuscitate beleaguered vulnerability database draws criticism 

The National Vulnerability Database has ceased some of its work, but some experts fear the formation of a consortium to address its problems lacks sufficient urgency.

The post Plan to resuscitate beleaguered vulnerability database draws criticism  appeared first on CyberScoop.

Continue reading Plan to resuscitate beleaguered vulnerability database draws criticism 

How CISA’s list of “must-patch” vulnerabilities has expanded in both size, and in who’s using it

While CISA says the catalog is catching on, some think it needs improvement.

The post How CISA’s list of “must-patch” vulnerabilities has expanded in both size, and in who’s using it appeared first on CyberScoop.

Continue reading How CISA’s list of “must-patch” vulnerabilities has expanded in both size, and in who’s using it