VDE CERT has issued a security advisory disclosing two vulnerabilities in WAGO Device Sphere and WAGO Solution...
cybersecurity
Researchers at Darktrace have identified a sophisticated new campaign that merges traditional malware techniques with modern DevOps...
The U.S. Secret Service announced it has dismantled a sprawling telecommunications threat network across the New York...
Cybersecurity researcher Jeremiah Fowler has discovered a massive unprotected database containing highly sensitive insurance and vehicle-related records....
CISA this week added CVE-2025-10585, a high-severity type-confusion flaw in Google’s V8 JavaScript engine, to its Known...
The Open Source Security Foundation (OpenSSF), together with several prominent open-source and software foundations, has issued a...
Salesforce has published a security advisory detailing a high-severity flaw in its Salesforce-CLI installer (sf-x64.exe). The vulnerability,...
DNN Software has issued a security advisory warning of a critical stored cross-site scripting (XSS) vulnerability in...
Researchers at Cisco Talos have uncovered a long-running espionage campaign active since 2022, targeting the telecommunications and...
Researchers at Zscaler ThreatLabz have uncovered a new malware family, dubbed YiBackdoor, first observed in June 2025....
After nearly two years of silence, Zloader (a.k.a. Terdot, DELoader, or Silent Night) has returned with new...
Check Point Research (CPR) has published new findings on Nimbus Manticore, an Iranian state-aligned APT group overlapping...
The Mozilla Foundation has recently announced the launch of a rollback/restore feature for Firefox Add-ons, enabling developers...
SolarWinds has released a hotfix for its Web Help Desk (WHD) software after the discovery of a...
Researchers at Unit 42 uncovered a large-scale search engine optimization (SEO) poisoning campaign, tracked as CL-UNK-1037 and...
The Socket Threat Research Team has uncovered a new malware campaign hiding inside an npm package called...
The CERT Coordination Center (CERT/CC) has issued a vulnerability note warning of a cross-site scripting (XSS) flaw...
Libraesva has released an urgent security advisory addressing a command injection vulnerability (CVE-2025-59689) in its Email Security...
A new report from Hunt Intelligence reveals how attackers are abusing ConnectWise ScreenConnect (formerly ConnectWise Control) to...
A new study from a ZeroSalarium security researcher sheds light on a new technique to bypass endpoint...
The LastPass Threat Intelligence, Mitigation, and Escalation (TIME) team has issued a warning about an ongoing infostealer...
Security researcher Ezzer17 published a clear, methodical write-up that walks through the root cause, the partial fixes,...