Yealink has thanked Positive Technologies for discovering the critical vulnerability BDU:2024-00482 in its Yealink Meeting Server videoconferencing system. Yealink is a prominent VoIP provider and is among five major online conferencing vendors. Its products are used in 140 countries. The vendor was notified of the threat per the responsible disclosure policy and released a software patch.Read More…

Tenable has announced a strategic partnership with Splunk to enable security teams to better correlate events, take action on flaws and meet compliance standards. The combined power of Tenable’s vulnerability management insights with Splunk’s log and flow consolidation capabilities simplifies risk prioritization and accelerates threatRead More…

ESET researchers have recently discovered and analyzed a 0-day exploit deployed in a highly targeted attack in Eastern Europe. The exploit used a local privilege escalation vulnerability in Microsoft Windows. ESET immediately reported the issue to the Microsoft Security Response Center,Read More…