Security News

Wormable Windows Zero Day Reported to Microsoft (Threatpost)
2017-05-08 15:28

Google Project Zero researchers Tavis Ormandy and Natalie Silvanovich found a remotely exploitable Windows vulnerability that Ormandy called he worst in recent memory.

China-Linked Spies Use Recent Zero-Day to Target Financial Firms (SecurityWeek)
2017-05-02 10:03

ShadowBrokers’ Windows Zero-Days Already Patched (Threatpost)
2017-04-17 18:06

Microsoft eased some anxiety over the latest ShadowBrokers dump of Windows zero days with news most of the vulnerabilities had already been patched.

Did Microsoft Drop the Ball on the Word Zero-Day Flaw? (InfoRiskToday)
2017-04-13 18:18

‘High Risk’ Zero Day Leaves 200,000 Magento Merchants Vulnerable (Threatpost)
2017-04-13 16:51

A popular version of the Magento ecommerce platform is vulnerable to a remote code execution bug, putting as many as 200,000 online retailers at risk.

Office Zero Day Delivering FINSPY Spyware to Victims in Russia (Threatpost)
2017-04-12 18:58

Researchers have learned that the recently patched Office zero day was used to target victims in Russia with FINSPY spyware.

Microsoft Patches Word Zero-Day Spreading Dridex Malware (Threatpost)
2017-04-11 18:41

A Microsoft Word zero-day vulnerability is being used to spread the Dridex banking Trojan in attacks that have bypassed mitigation efforts.

MS Office zero-day is used to infect users with Dridex (Help Net Security)
2017-04-11 16:40

The still unpatched MS Office zero-day vulnerability publicized by McAfee and FireEye researchers this weekend is being exploited to deliver the infamous Dridex banking malware. Exploit delivered...

Zero-Day Attack Targets Microsoft Office (InfoRiskToday)
2017-04-10 15:48

Critical Office Zero-Day Exploited in Attacks (SecurityWeek)
2017-04-10 13:03