The main attacks and vulnerabilities compiled by our experts last week: 10th—16th December

Check in our weekly report the main attacks and vulnerabilities found by our teams of experts.

Here are the most relevant headlines of the week, download our full report and take note:

Microsoft fixes in its December Patch Tuesday two 0-day vulnerabilities and 49 other bugs

Among the fixed vulnerabilities, two of them are 0-day, one of them actively exploited and identified as CVE-2022-44698 and CVSS 5.4,

Citrix fixes actively exploited 0-day vulnerability

Citrix has issued a security alert warning administrators of a critical, actively exploited, 0-day vulnerability affecting Citrix ADC and Gateway. 

New Apple 0-day vulnerability exploited

Apple has released the monthly security bulletin fixing vulnerabilities affecting iOS/iPadOS 15.7.2, Safari 16.2, tvOS 16.2 and macOS Ventura 13.1

Royal ransomware becomes a potential threat

Researchers from Cybereason Global SOC and Cybereason Security Research Teams have published an analysis of the Royal ransomware group, describing its tactics, techniques, and procedures (TTP).

Atlassian cookies allow unauthorized access even with two-factor login enabled

Recently, security company CloudSek was the victim of a cyberattack and its internal investigation has uncovered a vulnerability in Atlassian products.


Let us help you plan and mitigate any risks that could compromise your business.

 

Related news

Stay up to date. Get the latest news and trends
Sign Up
cross