“Only then can they accurately decide the optimal patching priority and schedule.” The increase in server-side exploits corresponds with the continued decline in the use of exploit kits relying on ...

The increase in server–side exploits corresponds with the continued decline in the use of exploit kits relying on client–side vulnerabilities, which accounted for only a quarter of exploits in ...

Update 26.3.2024: While not on the same scale as 2021's Microsoft Exchange Server hack (see below this update), security problems impacting Exchange Server have reemerged. In March 2024's monthly ...

Hackers are exploiting a server-side request forgery (SSRF) vulnerability in Ivanti Connect Secure, Policy Secure, and ZTA gateways to deploy the new DSLog backdoor on vulnerable devices.

Proof-of-Concept (PoC) exploits for the Apache web server zero-day surfaced on the internet revealing that the vulnerability is far more critical than originally disclosed. These exploits show ...

A study shows attackers are using more bots and doing more sophisticated phishing exploits and server attacks, especially targeting retail.

Given that most application security vulnerabilities come from known exploits, it would appear that enterprises are not doing enough to thwart potential threats.

Exchange Server products are potential subject two newly disclosed 'zero-day' vulnerabilities that are under exploit, Microsoft acknowledged, in a Thursday announcement.