Microsoft has patched 112 vulnerabilities in January 2026, including CVE-2026-20805, a Desktop Window Manager zero-day that attackers are actively exploiting.
DLL sideloading and CVE attacks show diversity of threat landscape Your email has been sent Sideloading using link libraries as decoys S1deloader exploits social media for nefarious outcomes Attacks ...
Cisco Talos reports China-linked APT UAT-8837 targeting North American critical infrastructure via a Sitecore zero-day, ...
Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Vivek Yadav, an engineering manager from ...
Microsoft has recategorized a bug that the company fixed in this month's Patch Tuesday update as a zero-day vulnerability, which the "Void Banshee" advanced persistent threat group has been exploiting ...
China-linked hackers are exploiting a critical SharePoint flaw to deploy ToolShell malware, bypassing patches and compromising organizations across key sectors. Microsoft has linked a wave of ...
New details have emerged about how an advanced persistent threat (APT) group exploited an unpatched Microsoft zero-day in a spear-phishing campaign to spread the Atlantida Stealer, which lifts system ...
A critical Apache OFBiz pre-authentication remote code execution vulnerability is being actively exploited using public proof of concept (PoC) exploits. Apache OFBiz (Open For Business) is an ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback