Common Vulnerabilities and Exposures (CVE) stories - Page 19

Cybercriminals use Microsoft Office documents to conduct 'macro-less' attacks that dodge organisations' defences and inject malware.

A China-based cyberespionage group may be targeting United States engineering and maritime industries tied up in activities about the South China Sea.

Recorded Future believes China has been altering public vulnerability data to allow the Ministry of State Security to play with it first.

A new report from SonicWall has shed light on the current threat landscape with the company recording an astonishing 9.32b malware attacks in 2017.

Chinese websites are under siege by a drive-by download campaign planting the decade-old Avzhan DDoS bot, Malwarebytes Labs reveals.

The North Korean threat group known to some as Reaper (APT37) is eyeing bigger targets with more sophisticated tactics.

A new wave of spam emails use Microsoft Office documents to download password stealers without having to activate Macros.

ASUSTOR is releasing updates to its ADM this week as part of its efforts to fix the Meltdown security vulnerabilities.

The Australian Cyber Security Centre (ACSC) has issued an official alert to those who use Cisco's Adaptive Security Appliance (ASA).

Lokibot malware targets unpatched Windows systems exploiting CVE-2017-11882; researchers urge timely updates and restricted installer access to combat threats.

Intel has rolled out patches for Spectre and Meltdown flaws in some Skylake processors, aiming to enhance data security amid previous update issues.

A staggering 42% of top Alexa-ranked websites are vulnerable to cyber-attacks due to outdated software and compromised content, finds Menlo Security.

An exploit that targeted an Adobe Flash vulnerability looks to be the work of a North Korean group called TEMP.Reaper.

A vulnerability in Oracle's POS systems may affect more than 330,000 payment systems across the globe, putting files and sensitive information at risk.

Zyklon HTTP malware is described as a publicly-available and fully featured backdoor that is able to conduct DDoS attacks, steal passwords...

Patching difficulties persist as the tech industry grapples with the fallout from Meltdown and Spectre, highlighting flaws in nearly all modern processors.

Desktops, laptops, and smartphones running on vulnerable processors can be exposed to unauthorized access and information theft.

Security issues known as Meltdown and Spectre affect all modern processors, including Apple's Mac systems and iOS devices. No known exploits at this time.

Apple has been quick to address the major CVE-2017-13872 security flaw in its macOS High Sierra 10.13.1 operating system.

Check Point researchers recently worked with LG to plug vulnerabilities in a number of home appliances, including robot vacuum cleaners & dishwashers.