Vulnerabilities Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Artificial Intelligence

Amazon Q Flaw Enabled Cloud Credential Theft via Malicious Repositories

AWS has patched the vulnerability and published its own advisory to inform customers about the potential impact.

Eduard Kovacs2 days ago

ICS/OT

Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning

The exploited flaw, CVE-2025-67038, is one of the vulnerabilities disclosed in April as part of the BRIDGE:BREAK research project.

Eduard Kovacs3 days ago

Vulnerabilities

GitLab Patches Code Execution, Information Disclosure Vulnerabilities

The latest GitLab CE/EE updates address 13 vulnerabilities, including three high-severity defects.

Ionut Arghire3 days ago

Vulnerabilities

25-Year-Old Vulnerability Patched in Curl

The latest version of the open source data transfer tool resolves 18 medium and low-severity vulnerabilities.

Ionut Arghire4 days ago

Vulnerabilities

Google Working on Improving Memory Safety in Chrome

With the stable release of Chrome 94, Google has shared details on its long-term plan to improve memory safety in the browser.

Ionut ArghireSeptember 22, 2021

ICS/OT

Flaws in Nagios Network Management Product Can Pose Risk to Many Companies

Researchers have discovered nearly a dozen vulnerabilities in widely used network management products from Nagios. The flaws could pose a serious risk to organizations...

Eduard KovacsSeptember 22, 2021

Application Security

VMware Calls Attention to High-Severity vCenter Server Flaw

Cloud computing and virtualization technology giant VMware on Tuesday shipped an urgent security patch for a flaw in its vCenter Server product and warned...

Ryan NaraineSeptember 21, 2021

Application Security

Russia-Linked Turla APT Uses New Backdoor in Latest Attacks

Security researchers at Cisco Talos have identified a new backdoor that Russian cyberespionage group Turla is believed to have been using in attacks since...

Ionut ArghireSeptember 21, 2021

Malware & Threats

Decade-Old Adobe ColdFusion Vulnerabilities Exploited by Ransomware Gang

Two ColdFusion vulnerabilities patched by Adobe more than a decade ago have been exploited by threat actors in a recent attack, according to cybersecurity...

Eduard KovacsSeptember 21, 2021

Risk Management

Providing Developers Value-Focused Feedback in Security Software Development

I recently wrote an article on attracting and retaining A-Players, and one of the key elements was to ensure that leadership share the mission...

Keith IbarguenSeptember 21, 2021

ICS/OT

OpenOffice Vulnerability Exposes Users to Code Execution Attacks

A buffer overflow vulnerability in Apache OpenOffice could be exploited to execute arbitrary code on target machines using malicious documents.

Ionut ArghireSeptember 21, 2021

Cybercrime

Attacks Targeting OMIGOD Vulnerability Ramping Up

Attackers are increasingly targeting a remote code execution vulnerability in the Open Management Infrastructure (OMI) framework that Microsoft released patches for earlier this month.

Ionut ArghireSeptember 21, 2021

Application Security

Apple Ships iOS 15 with MFA Code Generator

Apple on Monday rolled out a major refresh of its flagship iOS mobile platform, adding a built-in two-factor authentication code generator and multiple anti-tracking...

Ryan NaraineSeptember 20, 2021

Cloud Security

EventBuilder Exposed Information of Over 100,000 Event Registrants

Event management company EventBuilder exposed files containing the personal information of at least 100,000 users who registered for events on its platform.

Eduard KovacsSeptember 20, 2021

Vulnerabilities

AMD Chipset Driver Vulnerability Can Allow Hackers to Obtain Sensitive Data

Chipmaker AMD has patched a driver vulnerability that could allow an attacker to obtain sensitive information from the targeted system.

Eduard KovacsSeptember 17, 2021

Cybercrime

Mirai Botnet Starts Exploiting OMIGOD Flaw as Microsoft Issues More Guidance

Microsoft on Thursday published additional guidance on addressing recently disclosed vulnerabilities in the Open Management Infrastructure (OMI) framework, along with new protections to resolve...

Ionut ArghireSeptember 17, 2021

Cybercrime

U.S. Agencies Warn of APTs Exploiting Recent ADSelfService Plus Zero-Day

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Coast Guard Cyber Command (CGCYBER) have sounded the...

Ionut ArghireSeptember 17, 2021

Application Security

Endpoint Security Platform Kolide Banks $17 Million Investment

Endpoint security platform Kolide on Thursday announced that it has raised $17 million in Series B funding, for a total of $27 million raised...

Ionut ArghireSeptember 16, 2021

Application Security

Google Helps OSTIF Boost Security of Open Source Projects

Google this week announced plans to support the Open Source Technology Improvement Fund (OSTIF) to boost the security of open source projects.

Ionut ArghireSeptember 16, 2021

Mobile & Wireless

Researchers Create Toolkit for Hardware Security Tests on Apple’s Mobile Processors

A group of researchers from North Carolina State University has built a software toolkit to explore vulnerabilities in Apple’s mobile processors and used the...

Ionut ArghireSeptember 16, 2021

Vulnerabilities

Several Access Bypass, CSRF Vulnerabilities Patched in Drupal

Drupal developers on Wednesday informed users that updates released for Drupal 8.9, 9.1 and 9.2 patch five vulnerabilities that can be exploited for cross-site...

Eduard KovacsSeptember 16, 2021

Cybercrime

Links Found Between MSHTML Zero-Day Attacks and Ransomware Operations

Microsoft and threat intelligence company RiskIQ reported finding links between the exploitation of a recently patched Windows zero-day vulnerability and known ransomware operators.

Eduard KovacsSeptember 16, 2021

Cloud Security

Severe Vulnerabilities Could Expose Thousands of Azure Users to Attacks

Four of the fixes that Microsoft released as part of its September 2021 Patch Tuesday updates deal with vulnerabilities in the Open Management Infrastructure...

Ionut ArghireSeptember 15, 2021

Vulnerabilities

SAP Patches Critical Vulnerabilities With September 2021 Security Updates

German software maker SAP this week announced the release of 17 new and two updated security notes on the September 2021 Security Patch Day....

Ionut ArghireSeptember 15, 2021

Page 151 of 425« First ‹ Previous 147 148 149 150151152 153 154 155 Next ›Last »

Webinar: Why Email Security Keeps Failing (And What Has to Change)

July 8, 2026

Join this live webinar as we break down why email-layer defenses alone can't keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more.

Virtual Event: 2026 Cloud Security Summit

July 16, 2026

This year's summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments.

SECURITYWEEK NETWORK:

ICS:

Artificial Intelligence

Amazon Q Flaw Enabled Cloud Credential Theft via Malicious Repositories

ICS/OT

Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning

Vulnerabilities

GitLab Patches Code Execution, Information Disclosure Vulnerabilities

Vulnerabilities

25-Year-Old Vulnerability Patched in Curl

Vulnerabilities

Google Working on Improving Memory Safety in Chrome

ICS/OT

Flaws in Nagios Network Management Product Can Pose Risk to Many Companies

Application Security

VMware Calls Attention to High-Severity vCenter Server Flaw

Application Security

Russia-Linked Turla APT Uses New Backdoor in Latest Attacks

Malware & Threats

Decade-Old Adobe ColdFusion Vulnerabilities Exploited by Ransomware Gang

Risk Management

Providing Developers Value-Focused Feedback in Security Software Development

ICS/OT

OpenOffice Vulnerability Exposes Users to Code Execution Attacks

Cybercrime

Attacks Targeting OMIGOD Vulnerability Ramping Up

Application Security

Apple Ships iOS 15 with MFA Code Generator

Cloud Security

EventBuilder Exposed Information of Over 100,000 Event Registrants

Vulnerabilities

AMD Chipset Driver Vulnerability Can Allow Hackers to Obtain Sensitive Data

Cybercrime

Mirai Botnet Starts Exploiting OMIGOD Flaw as Microsoft Issues More Guidance

Cybercrime

U.S. Agencies Warn of APTs Exploiting Recent ADSelfService Plus Zero-Day

Application Security

Endpoint Security Platform Kolide Banks $17 Million Investment

Application Security

Google Helps OSTIF Boost Security of Open Source Projects

Mobile & Wireless

Researchers Create Toolkit for Hardware Security Tests on Apple’s Mobile Processors

Vulnerabilities

Several Access Bypass, CSRF Vulnerabilities Patched in Drupal

Cybercrime

Links Found Between MSHTML Zero-Day Attacks and Ransomware Operations

Cloud Security

Severe Vulnerabilities Could Expose Thousands of Azure Users to Attacks

Vulnerabilities

SAP Patches Critical Vulnerabilities With September 2021 Security Updates

Daily Briefing Newsletter

Trending

Webinar: Why Email Security Keeps Failing (And What Has to Change)

Virtual Event: 2026 Cloud Security Summit

People on the move

Expert Insights

When Information Becomes the Attack Surface – Understanding AI Agent Traps

What the Latest ShinyHunters Breaches Reveal About Modern Cyberattacks

No Exploits Required

After AI Reaches Production: 12 Ways Security Teams Can Take Control

Everybody Is Vibe Coding But Nobody Told the Security Team

Daily Briefing Newsletter