Exploits stories - Page 2

In terms of the share of vulnerabilities with publicly available exploits, three countries out of top five are located in Southeast Asia.

Threat activity has spiked in Q2 2022, with malware events rising by 25%, botnets doubling, and exploit activity growing almost 150%, says Nuspire's report.

One constant that remains as organisations approach a sense of normalcy after a disruptive year is that cyber criminals continue to target and exploit people.

Nuspire's Q1 2022 Threat Report reveals surge in threat actor activity as new vulnerabilities emerge. Mirai, STRRAT and Emotet see a resurgence.

Attackers exploit weak WiFi, remote endpoints, and the cloud, costing 50% of organisations over $1.3 million in breach damages.

Malware, botnet, and exploit activity increased in Q1 2022, according to a report by managed security services provider Nuspire.

WordPress vulnerabilities have more than doubled in 2021, with 77% of them being exploitable, according to Risk Based Security.

The widely-used java logging library, log4j, has been actively exploited, according to an update from CERT NZ and Catalyst.

84% of companies have high-risk vulnerabilities on their network perimeter, with half of them fixable through software updates, says Positive Technologies.

Radiflow launches iRISK, a risk analytics service for industrial networks, enhancing visibility and mitigation of vulnerabilities with NIST-recommended actions.

Microsoft has announced the Speculative Execution Side Channel Bounty Program that is offering up to USD$250,000 to people who reveal novel bugs.

The Australian Cyber Security Centre (ACSC) has issued an official alert to those who use Cisco’s Adaptive Security Appliance (ASA).

An exploit that targeted an Adobe Flash vulnerability looks to be the work of a North Korean group called TEMP.Reaper.

Ransomware hits firms twice on average, according to a Sophos survey. Despite the presence of endpoint security, 77% of attacks breach defences.

Israeli-based cybersecurity firm Votiro has joined VMware’s Technology Alliance Partner Program as an access level partner.

Malaysia's MyCERT warns of mass APAC supply chain breach after ShadowPad exploit hits NetSarang servers, stealing data.

WatchGuard’s Quarterly Internet Security Report says that 30% of malware attacks are new or zero day exploits - and legacy AVs are missing threats.

Symantec reports back on the latest threat statistics for March - email malware dipped, but web attacks are the biggest since 2016.

Not a single person claimed Google’s Project Zero prizes, even after six months of being open to participants.

Trend Micro’s latest report says that Asia Pacific region was something of a giant honeypot for cyber attacks last year, beating all other regions.