Trustwave Action Response: Supply Chain Attack Using 3CX PABX Software
Overview On March 29, a massive supply chain compromise in 3CX software resulted in malware being ...
Read More
Stay Informed
Sign up to receive the latest security news and trends straight to your inbox from Trustwave.
Denial of Service and RCE in OpenSSL 3.0 (CVE-2022-3786 and CVE-2022-3602)
Overview On November 1 the OpenSSL Project released patches addressing the previously rated ...
Read MorePatch Tuesday, August 2021
Here we are in August and it's Patch Tuesday once more. It's another light month with only 9 CVEs ...
Read MorePatch Tuesday, July 2021
We're a little over halfway through the year now as July's Patch Tuesday is released and it's been ...
Read MorePatch Tuesday, June 2021
Summer is officially here and with it June's Patch Tuesday. This is a surprisingly light month with ...
Read MorePatch Tuesday, May 2021
May's Patch Tuesday is upon us and probably the most surprising thing about the release is that ...
Read MorePatch Tuesday, April 2021
April's Patch Tuesday is upon us and it is showering us with patches for a total of 108 CVEs. This ...
Read MorePatch Tuesday, March 2021
The March Patch Tuesday is here and it's been an unfortunately busy month for Microsoft. Earlier ...
Read MorePatch Tuesday, February 2021
February is here and with it comes a relatively light Patch Tuesday. Only 56 CVEs are being patched ...
Read MorePatch Tuesday, January 2021
The first Patch Tuesday of 2021 is here and the year is starting out lighter than most. Perhaps a ...
Read MorePatch Tuesday, December 2020
December's Patch Tuesday is here and, typical for the end of the year, it's a light month with only ...
Read MoreGO SMS Pro Vulnerable to File Theft: Part 2
Last week we released an advisory about an SMS app called GO SMS Pro. Media files sent via text in ...
Read MorePatch Tuesday, October 2020
October's Patch Tuesday is upon us and with it comes patches for 102 CVEs. This release includes 13 ...
Read MorePatch Tuesday, August 2020
August's Patch Tuesday is here with 120 CVEs patched. That includes 100 rated as "Important" and 20 ...
Read MorePatch Tuesday, July 2020
July's Patch Tuesday is here with another large list of CVEs. It includes 20 CVEs rated "Critical" ...
Read MorePatch Tuesday, June 2020
June's Patch Tuesday has crept upon us and while our minds may be elsewhere, the need to keep our ...
Read MorePatch Tuesday, May 2020
May's Patch Tuesday includes patches for 111 unique CVEs. Of those CVEs 17 are rated "Critical" and ...
Read MorePatch Tuesday, April 2020
April's Patch Tuesday is here and Microsoft is patching 113 CVEs this month. Eighteen of these are ...
Read MoreSMBGhost CVE-2020-0796 a Critical SMBv3 RCE Vulnerability
Overview Last week Microsoft announced that there was a buffer overflow vulnerability in SMBv3 ...
Read MorePatch Tuesday March 2020
Today marks Microsoft's March Patch Tuesday. While it may not be on the top of everyone's March ...
Read MorePatch Tuesday February 2020
February's Patch Tuesday is here and brings with it patches for 98 CVEs. These are split between 13 ...
Read MoreWindows CryptoAPI Spoofing Vulnerability - CVE-2020-0601
One of the most notable vulnerabilities patched during Microsoft's first Patch Tuesday of 2020 was ...
Read MorePatch Tuesday, January 2020
Happy 2020! Microsoft is helping you celebrate the new decade with patches for 49 CVEs. Of those ...
Read MorePatch Tuesday, December 2019
December's Patch Tuesday is upon us, and, as in years gone by, it's a rather light month. All told ...
Read MorePatch Tuesday, October 2019
Microsoft’s security update for the month of October is one of the lightest patch Tuesdays of the ...
Read MorePatch Tuesday, September 2019
For September 2019, Microsoft is releasing 78 CVEs. Of these CVEs, 17 are rated "Critical", 60 ...
Read MoreMultiple Vulnerabilities in Comba and D-Link Routers
Overview There are five new credential leaking vulnerabilities discovered and disclosed by Simon ...
Read More