Patch/Configuration Management

Microsoft’s notorious Internet Explorer has been brought out of retirement by threat actors using its security holes to serve malware.

Akamai researchers say its honeypots found numerous attempts to exploit recently disclosed vulnerability.

GitLab has issued a fix for the critical flaw in GitLab Community Edition and Enterprise Edition software, tracked as CVE-2024-6385, which could be leveraged for arbitrary pipeline job execution.

Newly emergent EstateRansomware ransomware group has deployed intrusions leveraging the already addressed high-severity Veeam Backup & Replication software flaw, tracked as CVE-2023-27532.

Researchers warn that most networking devices over the last 25 years could be affected.

Microsoft has issued updates for 139 security vulnerabilities in the latest edition of patch Tuesday.

SecurityWeek reports that intrusions involving the exploitation of a format string injection vulnerability in the widely used general document conversion toolkit Ghostscript, which could be used to achieve remote code execution, have already been ongoing.