New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released

A cybersecurity researcher has released a proof-of-concept exploit for a Windows privilege escalation zero-day dubbed ...

Microsoft Confirms Active 0-Day Exploit—Check Emergency Mitigation

Microsoft Exchange users are urged to mitigate a zero-day vulnerability that CISA has confirmed is under active exploitation.

Critical New Linux Zero-Day Leaked—What Admins Need To Do Now

Dirty Frag, a critical Linux kernel zero-day vulnerability with no patch and giving hackers root, has gone public after an ...
The Hacker News

Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation

An anonymous cybersecurity researcher who disclosed three Microsoft Defender vulnerabilities has returned with two more ...
Marketplace

Bug bounty hunters’ attempt at patching zero day vulnerabilities

In software development, bugs in the code are inevitable. That’s why companies push out software updates so often. But there is a specific kind of bug that is especially worrisome, something called a ...
Computer Weekly

Microsoft releases rare zero-day free Patch Tuesday update

Zero zero-day flaws were addressed in May’s Patch Tuesday update but as usual there is much for admins to chew over in the ...
Morning Overview on MSN

CISA orders emergency patch for zero-click Windows flaw that steals credentials

A Windows vulnerability that lets attackers steal login credentials without the victim clicking, opening, or even seeing a malicious file has been added to CISA’s emergency patch list, forcing federal ...
Hosted on MSN

Critical zero-days in firewalls and SharePoint heighten patch urgency

Multiple active exploits: Zero-day flaws in Palo Alto Networks firewalls and Microsoft SharePoint are being actively targeted, with patches either just released or imminent. Mandates vs. discretion: ...