Author: DEFENDEDGE

TrickBot rises to top threat in February, overtaking Emotet in Check Point’s new index. Read more

The remote code execution flaw could allow attackers to deploy malware, modify network configurations and view databases. Read more

The security hole in the Plus Addons for Elementor plugin was used in active zero-day attacks prior to a patch being issued. Read more

The F5 flaws could affect the networking infrastructure for some of the largest tech and Fortune 500 companies – including Microsoft, Oracle and Facebook. Read more

Original release date: March 10, 2021 CISA and the Federal Bureau of Investigation (FBI) have released a Joint Cybersecurity Advisory (CSA) to address recently disclosed vulnerabilities in Microsoft Exchange Server. CISA and FBI assess that adversaries could exploit these vulnerabilities to compromise networks, steal information, encrypt data for ransom, or even execute a destructive attack.… Read more

Original release date: March 10, 2021 F5 has released a security advisory to address remote code execution (RCE) vulnerabilities—CVE-2021-22986, CVE-2021-22987—impacting BIG-IP and BIG-IQ devices. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators review the F5 advisory and install updated software as soon as possible. This… Read more

Original release date: March 10, 2021 Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s March 2021 Security Update Summary and Deployment Information and apply the necessary updates. This… Read more

Researchers have identified two vulnerabilities in the company’s crowd-sourced Offline Finding technology that could jeopardize its promise of privacy. Read more

Surveillance footage from companies such as Tesla as well as hospitals, prisons, police departments and schools was accessed in the hack. Read more

Original release date: March 9, 2021 SAP has released security updates to address vulnerabilities affecting multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system.  CISA encourages users and administrators to review the SAP Security Notes for March 2021 and apply the necessary updates.  This product is provided subject… Read more