Yahoo Finance1 个月
Zero-days from top security vendors were most exploited CVEs in 2023
Zero-days comprised the majority of the most routinely ... The top five vulnerabilities exploited by attackers in 2023 were found in three vendors across networking devices, remote access servers ...
Cfr.org15 天
Using Incentives to Shape the Zero-Day Market
The purchase was possible because there is a market for previously unknown vulnerabilities, often referred to as “zero-days” because the vendor has had zero days to patch the vulnerability.
Bleeping Computer26 天
New Windows zero-day exposes NTLM credentials, gets unofficial patch
0patch notes that this is the third zero-day vulnerability they recently reported to Microsoft that the vendor has not taken immediate action to address. The other two are the Mark of the Web ...
Bleeping Computer27 天
Mitel MiCollab zero-day flaw gets proof-of-concept exploit
Researchers have uncovered an arbitrary file read zero-day in the Mitel ... despite having reported to the vendor since August, it remains unfixed after 90 days of being disclosed and waiting ...