zero day

Microsoft patches a new zero-day affecting all versions of Windows

Microsoft has released security fixes for a zero-day vulnerability affecting all supported versions of Windows that has been exploited in real-world attacks. The zero-day bug, tracked as CVE-2022-3796

Apple releases iOS and macOS fixes to patch a new zero-day under attack

Apple has released another round of security updates to address vulnerabilities in iOS and macOS, including a new zero-day flaw that is being actively exploited by attackers. The zero-day flaw, track

Microsoft finally fixes Windows zero-day flaw exploited by state-backed hackers

Microsoft has finally released a fix for “Follina,” a zero-day vulnerability in Windows that’s being actively exploited by state-backed hackers. A fix for the high-severity vulnerability — tra

China-backed hackers are exploiting unpatched Microsoft zero-day 

China-backed hackers are exploiting an unpatched Microsoft Office zero-day vulnerability, known as “Follina”, to execute malicious code remotely on Windows systems. The high-severity vulnerabilit

China-backed APT41 compromised ‘at least’ six US state governments

The prolific China APT41 hacking group, known for carrying out espionage in parallel with financially motivated operations, has compromised multiple U.S. state government networks, according to cybers

The race is on to patch Log4Shell, the bug that’s breaking the internet

Security teams around the globe are scrambling to fix Log4Shell, a critical security flaw in Log4j, an open source logging software that’s found practically everywhere from online games to enter

Apple iCloud, Twitter and Minecraft vulnerable to ‘ubiquitous’ zero-day flaw

A number of popular services, including Apple iCloud, Twitter, Cloudflare, Minecraft and Steam, are reportedly vulnerable to a zero-day vulnerability affecting a popular Java logging library. The vuln

Malware caught using a macOS zero-day to secretly take screenshots

Almost exactly a month ago, researchers revealed a notorious malware family was exploiting a never-before-seen vulnerability that let it bypass macOS security defenses and run unimpeded. Now, some of

Apple releases iPhone, iPad and Watch security patches for zero-day bug under active attack

Apple has released an update for iPhones, iPads and Watches to patch a security vulnerability under active attack by hackers. The security update lands as iOS 14.4.2 and iPadOS 14.4.2, which also cove

America’s small businesses face the brunt of China’s Exchange server hacks

As the U.S. reportedly readies for retaliation against Russia for hacking into some of the government’s most sensitive federal networks, the U.S. is facing another old adversary in cyberspace: C

A bug bounty alone won’t save your startup — here’s why

In this world, there is no such thing as perfect security. Every app or service you use — even the websites you visit — have security bugs. Companies go through repeated rounds of testing, code re

Apple expands its bug bounty, increases maximum payout to $1M

Apple is finally giving security researchers something they’ve wanted for years: a macOS bug bounty. The technology giant said Thursday it will roll out the bug bounty program to include Macs an

Why an unhackable mobile phone is a complete marketing myth

The mobile security market is taking off due to high-profile hackings. Is there such a thing as an unhackable phone? Consider this: The smartphone in your pocket is 10 times more powerful than the fas

Cylance, fighting malicious hackers with AI, hits $1B valuation after raising $100M

“If you can’t beat them, join them” may not sound like the most encouraging pitch for a cybersecurity company, but a startup called Cylance has created an artificial intelligence-po

PureVPN Hit With A Zero Day Exploit, But CEO Says Email Alleging Data Compromise Was Fake

Earlier today, VPN service <a target="_blank" href="http://www.purevpn.com">PureVPN</a> was dealt a double blow by malicious hackers: a zero-day exploit; and the mailing of a subsequent, fake email