Microsoft patches YellowKey, GreenPlasma, MiniPlasma zero-days

On Tuesday, Microsoft patched two zero-day vulnerabilities that let attackers gain SYSTEM privileges on fully patched Windows ...
ZDNet

Google: Proper patching would have prevented 25% of all zero-days found in 2020

I wore the world's first HDR10 smart glasses TCL's new E Ink tablet beats the Remarkable and Kindle Anker's new charger is one of the most unique I've ever seen Best laptop cooling pads Best flip ...
Bleeping Computer

US Census Bureau hacked in January 2020 using Citrix exploit

US Census Bureau servers were breached on January 11, 2020, by hackers who exploited a Citrix ADC zero-day vulnerability as the US Office of Inspector General (OIG) disclosed in a recent report. "The ...

Unpatched Windows zero-day from 2020 gives hackers full system access

A security researcher by the name of Nightmare-Eclipse (also known as Chaotic Eclipse) has warned of a critical security vulnerability in Windows 11 that could be exploited by hackers to gain full ...
Dark Reading

Network Pivots, Patch Bypasses: Exploits Hit Hard in 2020

In 2020, security teams had to endure a great deal of chaos — not just from the events caused by the pandemic, but by a significant series of changes in the vulnerability landscape, according to ...
Dark Reading

RansomHub Actors Exploit ZeroLogon Vuln in Recent Ransomware Attacks

In recent attacks involving the ominously growing RansomHub ransomware, attackers have exploited the so-called ZeroLogon flaw in the Windows Netlogon Remote Protocol from 2020 (CVE-2020-1472) to gain ...
Threat Post

Hackers Actively Exploit F5 BIG-IP Bug

The bug has a severe rating of 9.8, public exploits are released. Threat actors have started exploiting a critical bug in the application service provider F5’s BIG-IP modules after a working exploit ...