Cisco has disclosed a vulnerability in its Meraki MX and Z Series devices, affecting the Cisco AnyConnect...
cybersecurity
Two newly disclosed vulnerabilities in Apache Traffic Server (ATS)—a core component of many cloud and content delivery...
A security vulnerability was found in Linux PAM (Pluggable Authentication Modules). Tracked as CVE-2025-6020, the flaw affects...
Trend Micro researchers have uncovered a stealthy new attack method that fuses misconfigured Docker remote APIs with...
Threat actors are ramping up attacks on poorly managed MySQL servers, particularly those running in Windows environments,...
A Server-Side Request Forgery (SSRF) vulnerability has been discovered in the @opennextjs/cloudflare package, potentially allowing unauthenticated users...
Elastic Security Labs has revealed a highly sophisticated multi-stage attack chain exploiting a social engineering method dubbed...
A critical vulnerability has been disclosed in KAON’s KCM3100 Wi-Fi gateway devices that could allow attackers to...
A fresh wave of targeted cyberattacks is sweeping across Europe, leveraging invoice-themed phishing emails and weaponizing legitimate...
A high-severity vulnerability has been uncovered in the pure-Python backend of Google’s Protocol Buffers (protobuf), potentially allowing...
D-Link has issued an official advisory warning users of its legacy DIR-632 router that two critical vulnerabilities...
Broadcom has officially unveiled VMware Cloud Foundation (VCF) 9.0, marking a significant stride in advancing its modern...
In a detailed investigation published by FortiGuard Labs, a persistent and highly coordinated malware campaign has been...
Two high-severity vulnerabilities have been disclosed in widely used Ubiquiti software components—UCRM Client Signup Plugin and the...
The Qualys Threat Research Unit (TRU) has unveiled two interconnected privilege escalation vulnerabilities—CVE-2025-6018 and CVE-2025-6019—that can allow...
Unit 42 has uncovered two newly evolved variants of the KimJongRAT malware, one using traditional PE (Portable...
A dangerous Linux privilege escalation vulnerability, CVE-2023-0386, has officially entered the CISA Known Exploited Vulnerabilities (KEV) Catalog...
The Cloud Software Group has issued a security bulletin addressing two critical vulnerabilities in NetScaler ADC (formerly...
Veeam, a global leader in data protection and disaster recovery solutions, has issued a critical security update...
Google has rolled out an important security update for the Stable Channel of Chrome, bringing the version...
German industrial automation manufacturer WAGO GmbH & Co. KG has released critical security updates for its WAGO...
The North Korean threat actor Kimsuky has been spotted deploying yet another advanced phishing campaign—this time leveraging...