LINK All versions of Apache are affected. Attacks are already occurring. Update anything Apache now.
Tag: zero day
New Windows zero-day with public exploit
LINK A security researcher has publicly disclosed an exploit for a new Windows zero-day local privilege elevation vulnerability that gives admin privileges in Windows 10, Windows 11, and Windows Server.
WD MyBook users hit with another zero-day
LINK Examine the link for more details on a new vulnerability and exploit. The particulars are important as they are pertinent to EOL hardware as well.
WD Drive Wiping was result of zero-day, not old vuln
LINK Just a bit of an update – It was being reported previously that the WD My Book Hard Drives that were connected online were being wiped and reset by an older vulnerability. That looks to NOT be the case, it looks like a new zero-day
Lexmark printers affected by RCE
LINK A new Zero Day RCE for Lexmark printers (big surprise) – No fix yet, but we hope ones are coming
Update Chrome – Again (another zero-day found and fixed)
LINK Google has had six I zero-days in the last month or two (don’t remember clearly) but they have been busy. If you have Chrome – Time to examine it in your infrastructure because of ALL the different updates.
Adobe fixes Reader zero-day vulnerability exploited in the wild
LINK Surprise, Adobe Reader has a zero-day being exploited. Get on it.
Application Remote Mouse hit with 6 unpatched Zero Days
LINK If you use the tool called Remote Mouse, its time to examine the vendor for updates.
SonicWall actively being attacked by new Zero-Day
LINK SonicWall zero-day vulnerability has been used by ransomware group. If you have SonicWall, time to investigate for an update.
Microsoft Patch Tuesday
Not posting a single link here. There are a lot of vulnerabilities fixed including 4 Zero-Day vulnerabilities found in Exchange. Advise immediately start patching procedures.