Vulnerability Management

Related events

Related Videos

System hacked warning alert on laptop computer. Cyber attack on computer network, virus, spyware, malware or malicious software. Cyber security and cybercrime concept. System security technology (3)

Sliver malware spread via SimpleHelp RMM exploits

SC StaffFebruary 7, 2025

Initial exploitation of SimpleHelp RMM vulnerabilities to link with a targeted endpoint is followed by the execution of several discovery commands obtaining system and network data, domain controller details, and CrowdStrike Falcon information, according to an analysis from cybersecurity provider Field Effect.

A 3D-Illustration of the word Linux on metallic cubes

Vulnerability Management

Linux kernel flaw added to CISA’s exploited vulnerabilities list

Steve ZurierFebruary 6, 2025

Flaw could let attackers escalate privileges on popular Google Android and Pixel devices.

Vulnerability Management

CISA: Actively exploited Linux kernel flaw requires immediate remediation

SC StaffFebruary 6, 2025

Such a vulnerability — which stems from a USB Video Class driver out-of-bounds write issue that could be exploited for privilege escalation — may have been used by forensic data extraction tools, according to the GrapheneOS development team.

Critical Veeam updater bug patched. (Adobe Stock)

Vulnerability Management

Veeam Updater receives update for critical RCE flaw

Laura FrenchFebruary 5, 2025

The vulnerability affects Veeam Backup for Salesforce, AWS, Microsoft Azure, Google Cloud and more.

Vulnerability Management

Build a vulnerability management program with internet exposure in mind

Aaron Unterberger February 5, 2025

Teams need to adapt their vulnerability management programs to the reality that most of their business today runs on the internet.

Network Security

Actively exploited Zyxel router bugs require immediate model upgrades

SC StaffFebruary 5, 2025

Included in the affected CPE Series router models were VMG1312-B10A, VMG1312-B10B, VMG1312-B10E, VMG3312-B10A, VMG3313-B10A, VMG3926-B10B, VMG4325-B10A, VMG4380-B10A, VMG8324-B10A, VMG8924-B10A, SBG3300, and SBG3500, according to Zyxel.

AI/ML

Microsoft fixes CVSS 9.9 vulnerability in Azure AI Face service

Laura FrenchFebruary 4, 2025

The flaw enabled authentication bypass by spoofing, with a proof-of-concept exploit available.

Vulnerability Management

Related events

Exposure management: How organizations can use it to build cyber resilience

CISO Perspectives to Improve/Optimize Vulnerability Management

Balancing Act: Prioritizing Vulnerabilities and Misconfigurations in Vulnerability Management

Related Videos

Transform cybersecurity with process mining

Security for the modern workforce

Log4j vulnerability response for banks: ‘This is not a quick process’

Sliver malware spread via SimpleHelp RMM exploits

Linux kernel flaw added to CISA’s exploited vulnerabilities list

CISA: Actively exploited Linux kernel flaw requires immediate remediation

Veeam Updater receives update for critical RCE flaw

Build a vulnerability management program with internet exposure in mind

Actively exploited Zyxel router bugs require immediate model upgrades

Microsoft fixes CVSS 9.9 vulnerability in Azure AI Face service