Click on the "Follow" button below and you'll get the latest news from ESecurity Planet via email, mobile or you can read them on your personal news page on this site.
You can unsubscribe anytime you want easily.
You can also choose the topics or keywords that you're interested in, so you receive only what you want.
ESecurity Planet title: ESecurity Planet: Latest Cybersecurity News for IT Professionals
Is this your feed? Claim it!
Major Threats & Vulnerabilities Zero-Day and Critical Exploits
A vulnerability in the
Microsoft has released security updates for a Windows Remote Assistance vulnerability that could let attackers bypass Mark of the Web (MOTW) protections.
This weakens a core Windows defense that helps flag and restrict risky files downloaded from untrusted sources.
Exploitation of the vulnerability could allow an attacker to “… evade Mark of the Web (MOTW) defen...
A Fortinet FortiSIEM vulnerability is under active exploitation, giving attackers a direct path to remote code execution on a core enterprise monitoring platform.
The flaw “… may allow an unauthenticated attacker to execute unauthorized code or commands via crafted TCP requests,”
A Windows Admin Center Azure SSO flaw could let attackers pivot from one compromised machine to tenant-wide access across Azure VMs and Arc-connected systems.
The vulnerability “… allows an attacker with local administrator access on just one machine to escalate privileges, execute remote code, and move laterally across Azure virtual machines and Arc-connected sy...
A WordPress plugin flaw is being actively exploited and opens thousands of sites to admin takeover without credentials or user interaction.
Patchstack reported an unauthenticated privilege escalation flaw in the Modular DS plugin, a remote website management tool with 40,000+ active installs.
The vulnerability allows “… various actions to be performed, ran...
