Explained: SMTP smuggling
Researchers have found flaws in the way SMTP servers handle messages, allowing them to send spoofed emails to and from targets.
Read moreExploits and vulnerabilities
Recently-patched Apache Struts vulnerability used in worldwide attacks
A recently patched Apache Struts 2 vulnerability has been spotted in worldwide exploitation attempts. Users and admins should update ASAP.
Read moreMicrosoft patches 34 vulnerabilities, including one zero-day
Microsoft and other vendors have released their rounds of December updates on or before patch Tuesday. Update now!
Read moreInsights into your unpatched vulnerabilities
Malwarebytes is offering customers its ThreatDown Vulnerability Assessment solution without extra costs to help reduce attack surfaces and improve their security posture
Read moreAndroid phones can be taken over remotely – update when you can
Android phones are vulnerable to attacks that allow a remote execution of malicious code and it requires no user interaction.
Read moreAdobe Coldfusion vulnerability used in attacks on government servers
CISA has published an advisory about a vulnerability in Adobe Coldfusion used in two attacks against federal agencies.
Read moreUpdate your iPhones! Apple fixes two zero-days in iOS
Apple has released an emergency security update for two zero-day vulnerabilities which may have already been exploited.
Read moreUpdate now! Chrome fixes actively exploited zero-day vulnerability
Google’s released an update to Chrome which includes seven security fixes. Make sure you’re using the latest version!
Read moreownCloud vulnerability can be used to extract admin passwords
A vulnerability in the ownCloud file sharing app could lead to the exposure of sensitive credentials like admin passwords.
Read more