Zero-day vulnerabilities – Page 6

Zero Day: cPanel® & WHM® Vulnerability

Posted on November 24, 2020 by Digital Defense Inc.

The post Zero Day: cPanel® & WHM® Vulnerability appeared first on Digital Defense, Inc..
The post Zero Day: cPanel® & WHM® Vulnerability appeared first on Security Boulevard.
Continue reading Zero Day: cPanel® & WHM® Vulnerability→

Apple Patches Bugs Tied to Previously Identified Zero-Days

Posted on November 6, 2020 by Elizabeth Montalbano

The actively exploited vulnerabilities discovered by Project Zero exist across iPhone, iPad and iPod devices. Continue reading Apple Patches Bugs Tied to Previously Identified Zero-Days→

Operation PowerFall: CVE-2020-0986 and variants

Posted on September 2, 2020 by Boris Larin

While we already described the exploit for Internet Explorer in the original blog post about Operation PowerFall, we also promised to share more details about the elevation of privilege exploit. Let’s take a look at vulnerability CVE-2020-0986. Continue reading Operation PowerFall: CVE-2020-0986 and variants→

Internet Explorer and Windows zero-day exploits used in Operation PowerFall

Posted on August 12, 2020 by Boris Larin

Kaspersky prevented an attack on a South Korean company by a malicious script for Internet Explorer. Closer analysis revealed that the attack used a previously unknown full chain that consisted of two zero-day exploits. Continue reading Internet Explorer and Windows zero-day exploits used in Operation PowerFall→

The zero-day exploits of Operation WizardOpium

Posted on May 28, 2020 by Boris Larin

Back in October 2019 we detected a classic watering-hole attack that exploited a chain of Google Chrome and Microsoft Windows zero-days. In this blog post we’d like to take a deep technical dive into the attack. Continue reading The zero-day exploits of Operation WizardOpium→

Microsoft reports Zero-Day Internet Explorer vulnerability exploited in the wild

Posted on January 20, 2020 by Alina Bizga

A Microsoft security advisory published last Friday warns users of a zero-day vulnerability affecting Internet Explorer 9, 10 and 11 when running on Windows 7 (recently discontinued), 8.1, 10, Server 2008, Server 2012, Server 2016, and Server 2019.&#16… Continue reading Microsoft reports Zero-Day Internet Explorer vulnerability exploited in the wild→

Kaspersky Security Bulletin 2019. Statistics

Posted on December 12, 2019 by AMR

During the year, Kaspersky solutions repelled 975 491 360 attacks launched from online resources located all over the world and 273 782 113 unique URLs were recognized as malicious by web antivirus components. Continue reading Kaspersky Security Bulletin 2019. Statistics→

Windows 0-day exploit CVE-2019-1458 used in Operation WizardOpium

Posted on December 10, 2019 by AMR

During our investigation, we discovered that yet another 0-day exploit (CVE-2019-1458) was used in Operation WizardOpium attacks. Continue reading Windows 0-day exploit CVE-2019-1458 used in Operation WizardOpium→

APT review: what the world’s threat actors got up to in 2019

Posted on December 4, 2019 by David Emm

What were the most interesting developments in terms of APT activity during the year and what can we learn from them? Continue reading APT review: what the world’s threat actors got up to in 2019→

IT threat evolution Q3 2019. Statistics

Posted on November 29, 2019 by Victor Chebyshev

Kaspersky solutions blocked 989,432,403 attacks launched from online resources in 203 countries across the globe; 560,025,316 unique URLs were recognized as malicious by Web Anti-Virus components. Continue reading IT threat evolution Q3 2019. Statistics→