Tag Archives: zeroday

Zero-day used to infect Chrome users could pose threat to Edge and Safari users, too

Enlarge (credit: Getty Images) A secretive seller of cyberattack software recently exploited a previously unknown Chrome vulnerability and two other zero-days in campaigns that covertly infected journalists and other targets with sophisticated spyware, security researchers said. CVE-2022-2294, as the vulnerability is tracked, stems from memory corruption flaws in Web Real-Time Communications, an open source project… Read More »

SolarWinds 0-day gave Chinese hackers privileged access to customer servers

Getty Images reader comments 11 with 10 posters participating Share this story Microsoft said on Tuesday that hackers operating in China exploited a zero-day vulnerability in a SolarWinds product. According to Microsoft, the hackers were, in all likelihood, targeting software companies and the US Defense industry. SolarWinds disclosed the zero-day on Monday, after receiving notification… Read More »

Microsoft discovers critical SolarWinds zero-day under active attack

reader comments 29 with 24 posters participating Share this story SolarWinds, the company at the center of a supply chain attack that compromised nine US agencies and 100 private companies, is scrambling to contain a new security threat: a critical zero-day vulnerability in its Serv-U product line. Microsoft discovered the exploits and privately reported them… Read More »

Hackers are exploiting a critical zeroday in firewalls from SonicWall

reader comments 23 with 16 posters participating Share this story Network security provider SonicWall said on Monday that hackers are exploiting a critical zeroday vulnerability in one of the firewalls it sells. The security flaw resides in the Secure Mobile Access 100 series, SonicWall said in an advisory updated on Monday. The vulnerability, which affects… Read More »