Computer Weekly

Vulnerability reports: Increase in quantity, decrease in quality?

Bug bounties have become a staple of the cyber security toolkit, offering researchers a way to get paid to find and report ...

Researchers disclose vulnerabilities in IP KVMs from four manufacturers

Researchers are warning about the risks posed by a low-cost device that can give insiders and hackers unusually broad powers ...

Max severity Ubiquiti UniFi flaw may allow account takeover

Ubiquiti has patched two vulnerabilities in the UniFi Network Application, including a maximum-severity flaw that may allow ...

Google fixes two new Chrome zero-days exploited in attacks

Google has released emergency security updates to patch two high-severity Chrome vulnerabilities exploited in zero-day ...
SecurityWeek

OpenAI Rolls Out Codex Security Vulnerability Scanner

Codex Security, formerly Aardvark⁠, has found hundreds of critical vulnerabilities in tested software in the past month.
StateTech Magazine

Vulnerability Exploitability eXchange: Smarter Patching for State and Local IT Teams

VEX helps public-sector security teams prioritize repairs by identifying which vulnerabilities affect their systems.
The Verge

Microsoft just released a patch for an actively exploited zero-day vulnerability in Windows.

Update your systems ASAP, as Bleeping Computer points out that today’s Patch Tuesday updates include one for a zero-day flaw already exploited by attackers. CVE-2024-49138 - Microsoft Windows Common ...

Vulnerability in CampusNet:Addresses of over one million students exposed online

Through clever search filters, attackers could have pieced together the addresses of all students. Manufacturer and ...
CSOonline

Patch Tuesday priorities: Vulnerabilities in SAP NetWeaver and Microsoft NTLM and Hyper-V

NetWeaver AS Java hole, rated severity 10, allows an unauthenticated attacker to execute arbitrary OS commands, and NTLM bug is rated likely for exploitation, warn security vendors. CISOs with SAP ...
Forbes

The Critical Role Of Vulnerability Management In Compliance

Many organizations prioritize compliance, assuming it ensures security—but does it, actually? Vulnerability management should come first, as security is about proactively identifying and mitigating ...