Zero-Day Vulnerability in Zoom Affected Windows 7 Users

Zero-Day Vulnerability in Zoom Affected Windows 7 Users

A zero-day vulnerability affecting the Zoom client for Windows has been discovered that would allow an attacker to execute arbitrary code on remote devices. Only Windows 7 and older OSes were affected, ...
Zoom Zero-Day Flaw Allegedly Allows Full Takeover of Windows PCs

Zoom Zero-Day Flaw Allegedly Allows Full Takeover of Windows PCs

Video conferencing software Zoom is again in the spotlight over an alleged critical vulnerability that could allow an attacker to take over the victim’s computer and all data on it. Discovered by ...

Zero-day Vulnerabilities and the Visibility Gap Challenge During Mass Remote Work

As the world collectively deals with COVID-19, many organizations have enacted company-wide work from home policies to help slow the spread of the virus. For many organizations the sudden requirement to support ...

Zoom Hacked Accounts, North Korean Hackers, Facebook Senior Pictures

In episode 117 for April 20th 2020: More problems for Zoom with tens of thousands of compromised credentials and zero-day exploits, the $5 million dollar reward for information on North Korean hackers, ...
Zoom

Zoom Zero-Days For Sale: Critical RCE at $500,000

Another day, another Zoom infosec dumpster fire ...
Security Boulevard

Researcher Discovers Zero Day Vulnerability Using Homoglyph Characters

One of the most common sneaky tricks on the web is typo squatting. Attackers know that someone trying to type “disney.com” can very easily type “dinsey.com” or “disnet.com” on accident, and they ...
Zyxel 0day Affects its Firewall Products, Too

Zyxel 0day Affects its Firewall Products, Too

On Monday, networking hardware maker Zyxel released security updates to plug a critical security hole in its network attached storage (NAS) devices that is being actively exploited by crooks who specialize in ...
Zyxel Fixes 0day in Network Storage Devices

Zyxel Fixes 0day in Network Storage Devices

Networking hardware vendor Zyxel today released an update to fix a critical flaw in many of its network attached storage (NAS) devices that can be used to remotely commandeer them. The patch ...
Hacked Website Threat Report – 2019

Hacked Website Threat Report – 2019

The threat landscape for website owners is constantly shifting on a regular basis — and it’s becoming increasingly more complex. As attackers continue to develop tools and find new vulnerabilities to massively ...
MSoft IE Vulnerability 2020-01-21

Morphisec Protects Customers Against Internet Explorer Scripting Zero Day

Recently, news came out about a vulnerability (CVE-2020-0674) in Microsoft’s Internet Explorer scripting engine based on how the browser handles memory. More specifically, within the JScript component of the scripting engine is ...