zero-day

Security updates affect Windows 10, 11 and server versions. Microsoft has released updates for a number of Windows products, eliminating the CVE-2024-43629 vulnerability identified by a specialist from the Positive Technologies Security Expert Center. The updates cover Windows 10, Windows 11...

Who, why and how is engaged in the distribution of tools that can wipe out entire states from the face of the Earth? Have you ever wondered what it's like to be a hacker? In various movies and TV shows, we often see a hooded man hitting a keyboard, resulting in a lot of numbers and symbols...

Update your browser urgently to avoid cyberattacks. Google has announced the release of an update that closes the tenth zero-day vulnerability that was actively exploited by attackers or white hat hackers as part of the competition in 2024. CVE-2024-7965 (CVSS score: 8.8) is a bug in the...

Microsoft's July patch package closed a total of 142 vulnerabilities, including two breaches that are actively used in real cyber attacks, and two more with a ready-made exploit. Among the closed holes, there are five critical ones. If exploited, they can lead to remote code execution. The...

You can upgrade your privileges in just two seconds. How much do hackers want for a new hacking tool? A new exploit for local Privilege escalation (LPE) in Windows operating systems has appeared on underground hacker forums. According to the seller under the pseudonym "vulns-rock", the exploit...

Online Database Monitoring Company Webz.io I found out that the darknet sells an exploit of a new zero-day vulnerability for iOS and macOS devices. It is based on the vulnerability CVE-2022-32893, which the company fixed the other day. However, the researchers claim that the exploit is intended...

Table of contents What is a zero-day vulnerability? Where do zero-day vulnerabilities come from? Preventive protection Preventive protection Responding to the exploitation of a zero-day vulnerability Results The "wild nature" of the information security world is saturated with a variety of...

The SmartScreen security bug served hackers well. Maybe you also managed to become a victim of it? In mid-January, security researchers noticed a new large-scale campaign to distribute malicious software DarkGate, exploiting a recently fixed vulnerability in the Microsoft Windows security...

Chinese UNC3886 leaves no chance for privacy for VMware users. A group of cybercriminals linked to China and known as UNC3886 secretly exploited a critical zero-day vulnerability in the management system of VMware vCenter Server from the end of 2021. This information was disclosed in a recent...

The source of the risk was a built-in but long-forgotten browser feature. Security researchers from Guardio Labs discovered a serious flaw in the Opera web browser for Windows and macOS operating systems. With its help, attackers can run absolutely any files, including malicious ones, in the...