Vulnerabilities Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Endpoint Security

‘DirtyClone’ Linux Kernel Vulnerability Leads to Root Access

A variant of DirtyFrag, the flaw allows unprivileged local users to manipulate the Linux page cache and gain root privileges.

Ionut Arghire9 hours ago

Artificial Intelligence

Amazon Q Flaw Enabled Cloud Credential Theft via Malicious Repositories

AWS has patched the vulnerability and published its own advisory to inform customers about the potential impact.

Eduard Kovacs3 days ago

ICS/OT

Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning

The exploited flaw, CVE-2025-67038, is one of the vulnerabilities disclosed in April as part of the BRIDGE:BREAK research project.

Eduard Kovacs4 days ago

Vulnerabilities

GitLab Patches Code Execution, Information Disclosure Vulnerabilities

The latest GitLab CE/EE updates address 13 vulnerabilities, including three high-severity defects.

Ionut Arghire4 days ago

Application Security

Critical, Exploitable Flaws in NETGEAR Router Firmware

Security researchers at Microsoft are flagging multiple gaping security holes in firmware shipped on NETGEAR routers, warning that exploitation could lead to identity theft...

Ryan NaraineJuly 1, 2021

Cyber Insurance

Study Finds Insurance Companies Lack Cyber Hygiene

A study of exposed web-app attack surface reveals that insurance companies are not good at keeping their own security house in order

Kevin TownsendJuly 1, 2021

ICS/OT

Vulnerability Found in Industrial Remote Access Product From Claroty

The Secure Remote Access (SRA) product of industrial cybersecurity firm Claroty is affected by a vulnerability that could be useful to threat actors targeting...

Eduard KovacsJuly 1, 2021

Application Security

IBM Gifts Threat Hunting Tool to Open Cybersecurity Alliance

IBM Corp. on Wednesday announced that it is contributing the Kestrel open-source programming language for threat hunting to the Open Cybersecurity Alliance (OCA).

Ionut ArghireJune 30, 2021

Application Security

Windows Admins Scrambling to Contain ‘PrintNightmare’ Flaw Exposure

Windows network administrators are scrambling to contain the fallout from the release of proof-of-concept code for a nasty Windows Print Spooler vulnerability that exposes...

Ryan NaraineJune 30, 2021

Cybercrime

Zero-Day Vulnerability Exploited in Recent Attacks on WD Storage Devices

Western Digital (WD) on Tuesday confirmed that the recent attacks targeting some of its older network-attached storage (NAS) devices involved the exploitation of a...

Eduard KovacsJune 30, 2021

Cloud Security

Google Working on Patching GCP Vulnerability That Allows VM Takeover

A security researcher has disclosed the details of a vulnerability that can be exploited to take over virtual machines (VMs) on Google Cloud Platform.

Eduard KovacsJune 30, 2021

Audits

Authentication Bypass in Adobe Experience Manager Impacts Large Organizations

Multiple large organizations were found to be impacted by an authentication bypass in Adobe Experience Manager CRX Package Manager, according to a warning from...

Ionut ArghireJune 29, 2021

ICS/OT

High-Severity Vulnerabilities Found in Several Phoenix Contact Industrial Products

Germany-based industrial solutions provider Phoenix Contact last week informed customers that a total of 10 vulnerabilities have been identified across several of the company’s...

Eduard KovacsJune 29, 2021

Malware & Threats

Malvuln Project Catalogues 260 Vulnerabilities Found in Malware

Eduard KovacsJune 29, 2021

Application Security

Threat Actor Abuses Microsoft’s WHCP to Sign Malicious Drivers

Microsoft is investigating an incident where a threat actor submitted malicious drivers for certification through the Windows Hardware Compatibility Program.Built by a third-party, the...

Ionut ArghireJune 28, 2021

Application Security

Mozilla Launches Privacy-Focused Browsing Data Sharing Platform

Mozilla has a new privacy-focused data sharing platform that provides users with increased control of their data and also allows them to contribute to...

Ionut ArghireJune 28, 2021

Application Security

GitHub Paid Out Over $1.5 Million via Bug Bounty Program Since 2016

Microsoft-owned software development solutions provider GitHub announced on Friday that it has paid out more than $1.5 million through its bug bounty program since...

Eduard KovacsJune 28, 2021

Vulnerabilities

XSS Vulnerability in Cisco Security Products Exploited in the Wild

A cross-site scripting (XSS) vulnerability patched last year in Cisco’s Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software has reportedly been exploited...

Eduard KovacsJune 28, 2021

Supply Chain Security

Cybersecurity Leaders Scramble to Decipher SBOM Mandate

The U.S. government’s push for mandatory SBOMs has sent cybersecurity buyers and sellers scrambling to understand the ramifications and prepare for downstream side-effects.

Ryan NaraineJune 28, 2021

Application Security

Bit Discovery Banks $4 Million for Attack Surface Management Tech

Jeremiah Grossman's Bit Discovery has banked another $4 million in venture capital funding to compete in the crowded attack surface management space.

Ryan NaraineJune 25, 2021

Application Security

AWS Acquires Encrypted Communications Service Wickr

Amazon’s AWS subsidiary on Friday announced the acquisition of Wickr, a late-stage startup that sells end-to-end encrypted communications tools. Financial terms of the transaction...

Ryan NaraineJune 25, 2021

IoT Security

Old Vulnerability Exploited to Hack, Wipe WD Storage Devices

Many owners of My Book Live and My Book Live Duo network-attached storage (NAS) devices made by Western Digital (WD) reported having their files...

Eduard KovacsJune 25, 2021

Application Security

Google Rolling Out Security Update for Google Drive

Google this week announced a security update for Google Drive that is meant to make sharing links more secure for files stored with the...

Ionut ArghireJune 25, 2021

Vulnerabilities

Vulnerabilities Expose Fortinet Firewalls to Remote Attacks

A high-severity vulnerability patched recently by Fortinet in its FortiWeb web application firewall (WAF) can be exploited to execute arbitrary commands. The flaw can...

Eduard KovacsJune 25, 2021

Page 162 of 425« First ‹ Previous 158 159 160 161162163 164 165 166 Next ›Last »

Webinar: Why Email Security Keeps Failing (And What Has to Change)

July 8, 2026

Join this live webinar as we break down why email-layer defenses alone can't keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more.

Virtual Event: 2026 Cloud Security Summit

July 16, 2026

This year's summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments.

SECURITYWEEK NETWORK:

ICS:

Endpoint Security

‘DirtyClone’ Linux Kernel Vulnerability Leads to Root Access

Artificial Intelligence

Amazon Q Flaw Enabled Cloud Credential Theft via Malicious Repositories

ICS/OT

Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning

Vulnerabilities

GitLab Patches Code Execution, Information Disclosure Vulnerabilities

Application Security

Critical, Exploitable Flaws in NETGEAR Router Firmware

Cyber Insurance

Study Finds Insurance Companies Lack Cyber Hygiene

ICS/OT

Vulnerability Found in Industrial Remote Access Product From Claroty

Application Security

IBM Gifts Threat Hunting Tool to Open Cybersecurity Alliance

Application Security

Windows Admins Scrambling to Contain ‘PrintNightmare’ Flaw Exposure

Cybercrime

Zero-Day Vulnerability Exploited in Recent Attacks on WD Storage Devices

Cloud Security

Google Working on Patching GCP Vulnerability That Allows VM Takeover

Audits

Authentication Bypass in Adobe Experience Manager Impacts Large Organizations

ICS/OT

High-Severity Vulnerabilities Found in Several Phoenix Contact Industrial Products

Malware & Threats

Malvuln Project Catalogues 260 Vulnerabilities Found in Malware

Application Security

Threat Actor Abuses Microsoft’s WHCP to Sign Malicious Drivers

Application Security

Mozilla Launches Privacy-Focused Browsing Data Sharing Platform

Application Security

GitHub Paid Out Over $1.5 Million via Bug Bounty Program Since 2016

Vulnerabilities

XSS Vulnerability in Cisco Security Products Exploited in the Wild

Supply Chain Security

Cybersecurity Leaders Scramble to Decipher SBOM Mandate

Application Security

Bit Discovery Banks $4 Million for Attack Surface Management Tech

Application Security

AWS Acquires Encrypted Communications Service Wickr

IoT Security

Old Vulnerability Exploited to Hack, Wipe WD Storage Devices

Application Security

Google Rolling Out Security Update for Google Drive

Vulnerabilities

Vulnerabilities Expose Fortinet Firewalls to Remote Attacks

Daily Briefing Newsletter

Trending

Webinar: Why Email Security Keeps Failing (And What Has to Change)

Virtual Event: 2026 Cloud Security Summit

People on the move

Expert Insights

When Information Becomes the Attack Surface – Understanding AI Agent Traps

What the Latest ShinyHunters Breaches Reveal About Modern Cyberattacks

No Exploits Required

After AI Reaches Production: 12 Ways Security Teams Can Take Control

Everybody Is Vibe Coding But Nobody Told the Security Team

Daily Briefing Newsletter