New Flash Player zero-day used against Russian facility
For the past couple of years, Office documents have largely replaced exploit kits as the primary malware delivery vector, giving threat …
Browsing: 0day
Week in review: VirtualBox 0day, GPU side channel attacks, vulnerable self-encrypting SSDs
Here’s an overview of some of last week’s most interesting news and articles: Five key considerations when developing a Security …
(0day) Microsoft Windows Jet Database Engine Vulnerability
released by Zero Day Initiative (ZDI), the vulnerability is due to a problem with the management of indexes in the Jet database engine …
Crowdfense platform to allow researchers to safely submit, discuss and sell 0day exploits
Crowdfense announced the launch of their Vulnerability Research Platform (VRP). This web-based collaboration platform allows vulnerability …
Adobe Reader zero-day discovered alongside Windows vulnerability
During the first half of 2018, we have witnessed some particularly interesting zero-day exploits, including one for Flash (CVE-2018-4878) …
Internet Explorer zero-day: browser is once again under attack
In late April, two security companies (Qihoo360 and Kaspersky) independently discovered a zero-day for Internet Explorer (CVE-2018-8174), …
Attacks Leveraging Adobe Zero-Day (CVE-2018-4878) – Threat Attribution, Attack Scenario and Recommendations
We assess that the actors employing this latest Flash zero-day are a suspected North Korean group we track as TEMP.Reaper. We have observed …