Endpoint Management / Endpoint Security and Management / Featured Articles / IT Asset Management

Discourse Patches Critical Remote Code Execution Vulnerability

Discourse is one of the most popular open-source community forums and mailing list management software applications. A critical code execution…

Comments Off on Discourse Patches Critical Remote Code Execution Vulnerability

October 26, 2021

Endpoint Security and Management / Security Research and Intelligence

Microsoft Open Management Infrastructure (OMI) Critical Vulnerabilities Under Active Exploitation – OMIGOD

Microsoft Open Management Infrastructure (OMI) is an open-source project which allows users to manage configurations across remote and local environments…

Comments Off on Microsoft Open Management Infrastructure (OMI) Critical Vulnerabilities Under Active Exploitation – OMIGOD

September 21, 2021

Category(Default) - Do Not Use This / Endpoint Security and Management / Security Research and Intelligence

Netgear Patches High Severity Flaws In Its Smart Switches

Netgear is a multinational computer networking company that produces networking hardware for consumers, businesses, and service providers. Netgear identified three…

Comments Off on Netgear Patches High Severity Flaws In Its Smart Switches

September 8, 2021

Endpoint Security and Management / Patch Management / Security Research and Intelligence / Vulnerability Management

Microsoft Exchange Servers Actively Under Exploitation Via ProxyShell Vulnerabilities

Microsoft Exchange Servers are actively exploited in the wild by various threat actors. Attackers are looking for vulnerable instances of…

Comments Off on Microsoft Exchange Servers Actively Under Exploitation Via ProxyShell Vulnerabilities

August 24, 2021

Patch Management / SCAP Feed / Security Research and Intelligence / Vulnerability Management

Apple Patches Another High Severity Zero-Day Flaw (CVE-2021-30807) Exploited in the Wild

Apple Security Patches has released an urgent update to address a critical zero-day vulnerability that is being exploited in the…

Comments Off on Apple Patches Another High Severity Zero-Day Flaw (CVE-2021-30807) Exploited in the Wild

July 27, 2021

Featured Articles / Security Research and Intelligence

Kaseya’s Virtual System/Server Administrator (VSA) Zero-Day Under Active Exploitation By REvil Ransomware

Kaseya is a US-based organization that provides IT and security management solutions for managed service providers (MSPs) and small to…

Comments Off on Kaseya’s Virtual System/Server Administrator (VSA) Zero-Day Under Active Exploitation By REvil Ransomware

July 7, 2021

Security Research and Intelligence

Pulse Connect Secure Zero-Day Vulnerability Under Active Exploitation (CVE-2021-22893)

Pulse Secure released an advisory on April 19 about a Critical Zero-day Authentication Bypass vulnerability identified as CVE-2021-22893 in Pulse Connect…

Comments Off on Pulse Connect Secure Zero-Day Vulnerability Under Active Exploitation (CVE-2021-22893)

April 22, 2021

Security Research and Intelligence

WordPress Plugin Contact Form 7 Critical File Upload Vulnerability (CVE-2020-35489)

Contact Form 7 is a popular WordPress plugin that is used to create, customize, and manage multiple contact forms on…

Comments Off on WordPress Plugin Contact Form 7 Critical File Upload Vulnerability (CVE-2020-35489)

December 18, 2020

Security Research and Intelligence

Critical Command Injection Vulnerabilities in D-Link DSR VPN Routers

Multiple critical command injection vulnerabilities have identified in the D-Link DSR VPN router family products. These vulnerabilities are identified with…

Comments Off on Critical Command Injection Vulnerabilities in D-Link DSR VPN Routers

December 10, 2020

Security Research and Intelligence

WordPress File Manager Plugin Under Active Exploitation

File Manager is a popular WordPress plugin that manages files on WordPress sites. It allows a WordPress administrator to edit,…

Comments Off on WordPress File Manager Plugin Under Active Exploitation

September 3, 2020