Number Nine! Chrome fixes another 2022 zero-day, Edge patched too
Ninth more unto the breach, dear friends, ninth more. Continue reading Number Nine! Chrome fixes another 2022 zero-day, Edge patched too
Category Archives: Zero Day
Chrome fixes 8th zero-day of 2022 – check your version now
There isn’t a rhyme to remind you which months have browser zero-days… you just have to keep your eyes and ears open! Continue reading Chrome fixes 8th zero-day of 2022 – check your version now
How to hack an unpatched Exchange server with rogue PowerShell code
Review your servers, your patches and your authentication policies – there’s a proof-of-concept out Continue reading How to hack an unpatched Exchange server with rogue PowerShell code
Exchange 0-days fixed (at last) – plus 4 brand new Patch Tuesday 0-days!
In all the excitement, we kind of lost track ourselves. Were there six 0-days, or only four? Continue reading Exchange 0-days fixed (at last) – plus 4 brand new Patch Tuesday 0-days!
Chrome issues urgent zero-day fix – update now!
We’ve said it before/And we’ll say it again/It’s not *if* you should patch/It’s a matter of *when*. (Hint: now!) Continue reading Chrome issues urgent zero-day fix – update now!
Updates to Apple’s zero-day update story – iPhone and iPad users read this!
Turns out that Tuesday’s zero-day for iOS 16 is Friday’s zero-day for iOS 15… Continue reading Updates to Apple’s zero-day update story – iPhone and iPad users read this!
S3 Ep102.5: “ProxyNotShell” Exchange bugs – an expert speaks [Audio + Text]
Who’s affected, what you can do while waiting for Microsoft’s patches, and how to plan your threat hunting… Continue reading S3 Ep102.5: “ProxyNotShell” Exchange bugs – an expert speaks [Audio + Text]
URGENT! Microsoft Exchange double zero-day – “like ProxyShell, only different”
Double-play 0-day in Exchange – what you need to know, and what you can do Continue reading URGENT! Microsoft Exchange double zero-day – “like ProxyShell, only different”
How to collect malicious URLs
I would like to obtain a list of malicious URLs for testing purposes and, if possible, would like to collect URLs of sites that exploit zero-day vulnerabilities.
I want to collect malicious URLs to investigate zero-day attacks.
S3 Ep100: Browser-in-the-Browser – how to spot an attack [Audio + Text]
Latest episode – listen now! Cosmic rockets, zero-days, spotting cybercrooks, and unlocking the DEADBOLT… Continue reading S3 Ep100: Browser-in-the-Browser – how to spot an attack [Audio + Text]