Microsoft offers temporary fixes for nasty ‘PrintNightmare’ zero-day

As it works on a permanent fix, Microsoft has published two mitigation methods to help tackle a serious vulnerability currently being exploited in the wild. As reported by Bleeping Computer, the vulnerability, tracked as CVE-2021-34527, is a Windows Print Spooler zero-day bug known as PrintNightmare. The flaw can be abused to seize control of affected servers via remote code execution, …

Tovább a bejegyzéshez

SonicWall was breached via zero-day bug in its VPN client

Network security firm SonicWall has notified its customers and clients that unknown criminals were currently taking advantage of a zero-day vulnerability found in their VPN products and were attacking their internal systems. The company builds hardware firewalls, VPN gateways and network security tools for businesses. In a statement, the company said it spotted a zero-day in its Secure Mobile Access …

Tovább a bejegyzéshez

Zero-day attack – An inevitable threat?

A Zero-day vulnerability is a software flaw that has the potential to be abused in multiple different ways and which is unknown to the targeted software. The term ‘Zero-day Attack’ refers to an attack situation in which a vulnerability is both exploited in the wild and unknown to the target software, and the target therefore has “Zero days” to remedy …

Tovább a bejegyzéshez