With countless threats out in the world, it’s no surprise that some of them go after undiscovered vulnerabilities. These kinds of threats utilize what are called zero-day exploits to make attempts at your sensitive data and technology infrastructure. What is it about zero-day exploits that you must keep in mind during your day-to-day operations and in planning for the future?
Nothing is more irritating than going to log into your device and finding out that you can't access it or that files you thought were there have been wiped. Alas, this is the situation that many users of a specific device have recently gone through. Thanks to an unpatched vulnerability, users of Western Digital’s My Book network-attached storage device are suffering from lost files and lost account access stemming from remote access.
Virtual private networks are susceptible to an exploit that was recently revealed. Cisco has declared that this exploit undermines its Adaptive Security Appliance (ASA) tool. If this issue isn’t patched instantly, you could find your business vulnerable via remote code exploitation.
Just a few months after the firmware in their computer chips was revealed to be significantly flawed, Intel’s flagship product has yet again resulted in negative attention to the company. While the issue now has a fix, there was the possibility that a solution could reduce the functionality of the CPU.
The capability to vote is one of the most significant rights in the world, setting an individual's voice and opinion into action to shape history. However, it has been demonstrated that the electronic voting machines that some states in the United States use just are nowhere near secure enough to ensure that the democratic process is preserved.
A significant weakness has been discovered that affects all Wi-Fi users. Key Reinstallation Attack, or KRACK, affects the core encryption protocol that most Wi-Fi users depend upon to shield their browsing from others, Wi-Fi Protected Access 2 (WPA2).
Microsoft has resolved what a security researcher tweeted was “the worst Windows remote code exec” in his memory. This vulnerability allowed a targeted file to implement remote code execution processes, manipulating the infected system and spreading the infection to other machines. In other word, it’s a bad problem to have. The scariest part: the attack would be triggered if a particular file were to be scanned by the Microsoft Malware Protection Engine.
