zero day

Microsoft ‘Bluekeep’ Flaw threatens Medical Devices, IoT

Microsoft’s worm-friendly Bluekeep flaw affects medical devices and other Internet of Things endpoints, security experts are warning.

Survey: Hackers for Hire Find Most Networks Easy Prey

In-brief: A survey of penetration testers by Rapid7 finds most organizations are failing to detect malicious activity on their networks. 

Beware: Targeted Attacks on iPhone Users are a Thing | Lookout Blog

In-brief: Lookout said it identified an active threat that was using three critical iOS zero-day (that is: previously unknown) vulnerabilities. When exploited, the three vulnerabilities “form an attack chain that subverts even Apple’s strong security environment.”

Linux Kernel Flaw Reaches Into Internet of Things

In-brief: Software updates were released to address a serious and exploitable security flaw in the Linux kernel on Tuesday. The issue, in a feature called keyring, could impact embedded systems as well as mobile devices. 

Phishing

Adobe Flash Zero-Day Used in Attacks on Diplomats

In-brief: Trend Micro warned about targeted attacks on diplomatic missions that take advantage of a previously undiscovered hole in Adobe Flash.