A newly disclosed critical vulnerability in Manager.io, a free accounting software used by businesses across Australia and...
Cloud Security
Researchers from Unit 42 at Palo Alto Networks have uncovered a novel backdoor—HazyBeacon—used by a threat cluster...
The eCrime group known as SCATTERED SPIDER has recently extended its focus beyond insurance and retail to...
A security vulnerability in Synology’s Active Backup for Microsoft 365 (ABM) software has exposed countless organizations’ cloud...
The Trellix Advanced Research Center has unveiled a covert and highly sophisticated APT malware campaign dubbed OneClik,...
Mandiant successfully breached a fully patched instance of the Aviatrix Controller—a central component in Software-Defined Networking (SDN)...
In the complex world of cloud-native applications, Kubernetes and Amazon Elastic Kubernetes Service (EKS) have become the...
Trend Micro researchers have uncovered a stealthy new attack method that fuses misconfigured Docker remote APIs with...
The Apache CloudStack project has released new Long-Term Support (LTS) versions—4.19.3.0 and 4.20.1.0—to address five security vulnerabilities,...
Elastic has disclosed a high-severity vulnerability (CVE-2024-43706) affecting its Kibana observability platform, specifically in the Synthetic Monitoring...
Security research partner AppOmni disclosed five critical vulnerabilities in Salesforce’s powerful OmniStudio platform that could expose encrypted...
Cisco has issued security advisories for two high-severity vulnerabilities—one in the Cisco Integrated Management Controller (IMC) and...
Cisco has patched a critical vulnerability (CVE-2025-20286, CVSS 9.9) that affects cloud-based deployments of its Identity Services...
Wiz Threat Research has uncovered a stealthy cryptojacking operation exploiting misconfigured DevOps environments. Dubbed “JINX-0132”, the campaign...
Broadcom has released important security updates for VMware Cloud Foundation, addressing three privately reported vulnerabilities that could...
A critical security vulnerability has been identified in the Bitnami Pgpool-II Docker image and the bitnami/postgres-ha Kubernetes...
Microsoft has addressed a cluster of critical vulnerabilities affecting several of its core cloud services—including Azure Automation,...
Commvault has issued a crucial update to its March 7, 2025, security advisory following the detection of...
Tenable Research has identified a now-patched privilege-escalation vulnerability in Google Cloud Platform (GCP) dubbed “Confused Composer”. The...
Early this month, Oracle has discreetly notified select clients that attackers successfully breached one of its legacy...
Subdomain takeovers, a type of attack where an attacker gains control of an organization’s improperly configured or...
Google has announced the launch of “Google Unified Security,” an integrated security solution powered by Gemini AI,...