Follina Mitigation Details Emerges

According to Microsoft, administrators can preempt attacks exploiting CVE-2022-30190 by disabling the MSDT protocol. This stops malicious actors from launching troubleshooters and from executing code on vulnerable systems. The process…
Follina ZeroDay evades Microsoft Defender

Follina ZeroDay evades Microsoft Defender

Hackers are exploiting a vulnerability in Microsoft Office that enables them to fetch malicious code without detection in a multi-stage attack. The exploit, dubbed named Follina, abuses the remote template…
Microsoft Patch Tuesday – May 2022

Microsoft Patch Tuesday – May 2022

Microsoft addresses 73 CVEs in its May 2022 Patch Tuesday release, including two zero-day vulnerabilities, one of which was exploited in the wild. This month’s update includes patches for: .NET…
NGINX releases fix for a zero-day bug

NGINX releases fix for a zero-day bug

NGINX web server project has released security updates to address a zero-day vulnerability that resides in its Lightweight Directory Access Protocol (LDAP) Reference Implementation. The NGINX LDAP reference implementation uses…
Apple releases Emergency Patch
Posted inSecurity

Apple releases Emergency Patch

Apple has addressed patches for two vulnerabilities in its products that affects iOS, macOS and ipadOS. The first vulnerability is a Kenral code execution bug tracked as CVE-2022-22675. This update is…
Spring4Shell Patch ! Emergency release

Spring4Shell Patch ! Emergency release

Spring has released an emergency update to fix the 'Spring4Shell' zero-day RCE vulnerability. An exploit for a zero-day RCE vulnerability in the Spring Framework dubbed 'Spring4Shell' was briefly published on…