18 Zero-Days Exploited So Far in 2022

Klicken Sie hier, um Informationweek.com zu abonnieren

Kategorien: Dienstleistungen | Professionals Geschäftswaren Finanziell Kantoor Marketing Einzelhandel Einzelhandel Industrie Machines Alter: 14 - 18 Jahr 19 - 30 Jahr 31 - 64 Jahre

Laden...

2 jahre vor

Html
Text

It didn't have to be this way: So far 2022's tranche of zero-days shows too many variants of previously patched security bugs, according Google Project Zero.

Follow Dark Reading:

July 01, 2022

LATEST SECURITY NEWS & COMMENTARY

18 Zero-Days Exploited So Far in 2022 It didn't have to be this way: So far 2022's tranche of zero-days shows too many variants of previously patched security bugs, according Google Project Zero. Google: Hack-for-Hire Groups Present a Potent Threat Cyber mercenaries in countries like India, Russia, and the UAE are carrying out data theft and hacking missions for a wide range of clients across regions, a couple of new reports said. API Security Losses Total Billions, But It's Complicated A recent analysis of breaches involving application programming interfaces (APIs) arrives at some eye-popping damage figures, but which companies are most affected, and in what ways? Critical ManageEngine ADAudit Plus Vulnerability Allows Network Takeover, Mass Data Exfiltration An unauthenticated remote code execution vulnerability found in Zoho’s compliance tool could leave organizations exposed to an information disclosure catastrophe, new analysis shows. Exchange Servers Backdoored Globally by SessionManager Malicious ISS module exploitation is the latest trend among threat actors targeting Exchange servers, analysts say. Zero-Days Aren't Going Away Anytime Soon & What Leaders Need to Know There were a record number of zero-day attacks last year, but some basic cyber-hygiene strategies can help keep your organization more safe. MORE NEWS / MORE COMMENTARY


HOT TOPICS
Patch Now: Linux Container-Escape Flaw in Azure Service Fabric Microsoft is urging organizations that don't have automatic updates enabled to update to the latest version of Linux Server Fabric to thwart the "FabricScape" cloud bug. ZuoRAT Hijacks SOHO Routers From Cisco, Netgear The malware has been in circulation since 2020, with sophisticated, advanced malicious actors taking advantage of the vulnerabilities in SOHO routers as the work-from-home population expands rapidly. How to Master the Kill Chain Before Your Attackers Do In the always-changing world of cyberattacks, preparedness is key. MORE

EDITORS' CHOICE

Facebook Business Pages Targeted via Chatbot in Data-Harvesting Campaign The clever, interactive phishing campaign is a sign of increasingly complex social-engineering attacks, researchers warn. LATEST FROM THE EDGE
A Fintech Horror Story: How One Company Prioritizes Cybersecurity A password link that didn't expire leads to the discovery of exposed personal information at a payments service. LATEST FROM DR TECHNOLOGY
NIST Finalizes macOS Security Guidance NIST SP800-219 introduces the macOS Security Compliance Project (mSCP) to assist organizations with creating security baselines and defining controls to protect macOS endpoints.

WEBINARS

Building and Maintaining an Effective Remote Access Strategy

The COVID-19 pandemic transformed enterprises into remote workplaces overnight, forcing IT organizations to revamp their computing and networking strategies on the fly. Some of the changes were intended to be temporary, and some rules were adopted without thinking through all ...

Building and Maintaining Security at the Network Edge

Advances in networking and new technologies have expanded the possibilities of deploying applications at the network edge. These edge devices bring with them their own security management challenges and risks. How do you scale your security to manage the sheer ...

View More Dark Reading Webinars >>

WHITE PAPERS

Incorporating a Prevention Mindset into Threat Detection and Response Five Best Practices for AWS Security Monitoring Sumo Logic for Continuous Intelligence Gartner, Quick Answer: How Can Organizations Use DNS to Improve Their Security Posture? AppSec Considerations For Modern Application Development The Many Risks of Modern Application Development The Many Facets of Modern Application Development

View More White Papers >>

FEATURED REPORTS

Incorporating a Prevention Mindset into Threat Detection and Response Practical Network Security Approaches for a Multicloud, Hybrid IT World

The report covers areas enterprises should focus on for their multicloud/hybrid cloud security strategy: -increase visibility over the environment -learning cloud-specific skills -relying on established security frameworks -re-architecting the network

How Enterprises Are Securing the Application Environment

Download this report from Dark Reading to learn more about the measures enterprises have adopted to ensure the security of their internally developed applications and third-party packaged applications.

View More Dark Reading Reports >>

PRODUCTS & RELEASES

Study Reveals Traditional Data Security Tools Have a 60% Failure Rate Against Ransomware and Extortion NXM Announces Platform That Protects Space Infrastructure and IoT Devices From Cyberattacks Kaspersky Reveals Phishing Emails That Employees Find Most Confusing MORE PRODUCTS & RELEASES

CURRENT ISSUE

Improving Enterprise Cybersecurity With XDR
DOWNLOAD THIS ISSUE
VIEW BACK ISSUES

Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA

To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.

Thoughts about this newsletter? Give us feedback.

Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:

If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.

We take your privacy very seriously. Please review our Privacy Statement.

Teilen auf

Laden...

Weitere Newsletter von Informationweek.com

Cisco Report: Enterprises Ill-prepared to Realize AI’s Potential Informationweek.com
Gestern um 16:31
Ransomware Attack on Blue Yonder Hits Starbucks, Supermarkets | Fancy Bear's Nearest Neighbor Uses Nearby Wi-Fi Network Informationweek.com
Letzten Mittwoch um 18:44
How to Create an Accurate IT Project Timeline Informationweek.com
Letzten Mittwoch um 16:01

Weitere Newsletter von Informationweek.com

Laden...

Andere Kategorien anzeigen

Dienstleistungen | Professionals Geschäftswaren Finanziell Kantoor Marketing Einzelhandel Einzelhandel Industrie Machines

18 Zero-Days Exploited So Far in 2022

Improving Enterprise Cybersecurity With XDR

Teilen auf

Weitere Newsletter von Informationweek.com

Verwandte Newsletter

Andere Kategorien anzeigen