Category Archives: week in review

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: October 2024 Patch Tuesday forecast: Recall can be recalled October arrived, and Microsoft started the month by announcing the release of Windows 11 24H2…. Continue reading Week in review: Critical Zimbra RCE vulnerability exploited, Patch Tuesday forecast→

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Windows Server 2025 gets hotpatching option, without reboots Organizations that plan to upgrade to Windows Server 2025 once it becomes generally available… Continue reading Week in review: Windows Server 2025 gets hotpatching option, PoC for SolarWinds WHD flaw released→

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Critical VMware vCenter Server bugs fixed (CVE-2024-38812) Broadcom has released fixes for two vulnerabilities affecting VMware vCenter Server that can be… Continue reading Week in review: Critical VMware vCenter Server bugs fixed, Apple releases iOS 18→

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Veeam Backup & Replication RCE flaw may soon be leveraged by ransomware gangs (CVE-2024-40711) CVE-2024-40711, a critical vulnerability affecting Vee… Continue reading Week in review: Veeam Backup & Replication RCE could soon be exploited, Microsoft fixes 4 0-days→

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Vulnerability allows Yubico security keys to be cloned Researchers have unearthed a cryptographic vulnerability in popular Yubico (FIDO) hardware security… Continue reading Week in review: Vulnerability allows Yubico security keys cloning, Patch Tuesday forecast→

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: SonicWall patches critical flaw affecting its firewalls (CVE-2024-40766) SonicWall has patched a critical vulnerability (CVE-2024-40766) in its next-gen f… Continue reading Week in review: SonicWall critical firewalls flaw fixed, APT exploits WPS Office for Windows RCE→

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: PostgreSQL databases under attack Poorly protected PostgreSQL databases running on Linux machines are being compromised by cryptojacking attackers. Vulner… Continue reading Week in review: PostgreSQL databases under attack, new Chrome zero-day actively exploited→

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Unpatched MS Office flaw may leak NTLM hashes to attackers (CVE-2024-38200) A new MS Office zero-day vulnerability (CVE-2024-38200) can be exploited by at… Continue reading Week in review: MS Office flaw may leak NTLM hashes, malicious Chrome, Edge browser extensions→

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: August 2024 Patch Tuesday forecast: Looking for a calm August release August 2024 July ended up being more ‘exciting’ than many of us wanted; we’re suppos… Continue reading Week in review: Tips for starting your cybersecurity career, Patch Tuesday forecast→

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Why a strong patch management strategy is essential for reducing business risk In this Help Net Security interview, Eran Livne, Senior Director of Product… Continue reading Week in review: VMware ESXi zero-day exploited, SMS Stealer malware targeting Android users→