Dossier
0-day vulnerability
Coverage of 0-day vulnerability in the Nexus archive.
Microsoftorganization1US Cybersecurity and Infrastructure Security Agencyorganization1Russian spiestopic1zero-click Windows flawtopic1Windowstopic1Microsoft Defenderorganization1SonicWallorganization1Microsoft Excelproduct1brute-force attacktopic1Remote Code Execution (RCE)topic1supply chain attackstopic1ancient vulnerabilitiestopic1
- Microsoft's patch for a 0-day exploited by Russian spies fell short. Another Windows flaw is under attack
Microsoft's patch for a 0-day vulnerability exploited by Russian spies proved ineffective, and attackers are now exploiting another zero-click Windows flaw that risks exposing sensitive system data. The US Cybersecurity and Infrastructure Security Agency (CISA) has joined Microsoft in issuing warnings about the ongoing threat.
- ThreatsDay Bulletin: Defender 0-Day, SonicWall Brute-Force, 17-Year-Old Excel RCE and 15 More Stories
The ThreatsDay Bulletin highlights multiple cybersecurity threats, including a Microsoft Defender 0-Day vulnerability, a SonicWall brute-force attack, and a 17-year-old Excel remote code execution (RCE) flaw. The article emphasizes the persistence of ancient vulnerabilities, supply chain risks, and creative hacking tactics.