Vulnerabilities Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Malware & Threats

In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum

Other noteworthy stories that might have slipped under the radar: Android TV botnet Popa linked to Israeli firm, Velvet Ant maintained decade-long stealth, unpatched...

SecurityWeek News3 days ago

Vulnerabilities

Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure

CISA has given federal agencies only three days to patch CVE-2026-20253, which can be exploited for unauthenticated remote code execution.

Eduard Kovacs3 days ago

Vulnerabilities

Majority of Internet-Accessible REDCap Servers Outdated

These servers are regularly targeted by China-linked UNC6508 for initial access and backdoor deployment.

Ionut Arghire4 days ago

Vulnerabilities

No Exploits Required

Four decades of incident response experience suggest that exploits are often the symptom, not the root cause, of today’s cybersecurity failures.

Tod Beardsley4 days ago

Email Security

Over 6,400 Edison Mail Users Hit by Security Bug in iOS App

An update rolled out recently by Edison Mail for its iOS application resulted in some users being given access to other people’s email accounts....

Eduard KovacsMay 18, 2020

Vulnerabilities

Hackers Can Inject Code Into WordPress Sites via Flaw in Product Review Plugin

A vulnerability addressed recently in the WP Product Review Lite plugin for WordPress could be abused by unauthenticated attackers to hack websites.

Ionut ArghireMay 18, 2020

ICS/OT

Vulnerabilities in SoftPAC Virtual Controller Expose OT Networks to Attacks

Vulnerabilities discovered by a researcher at industrial cybersecurity firm Claroty in Opto 22’s SoftPAC virtual programmable automation controller (PAC) expose operational technology (OT) networks...

Eduard KovacsMay 15, 2020

Network Security

Palo Alto Networks Patches Many Vulnerabilities in PAN-OS

Palo Alto Networks this week informed customers that it has patched over two dozen vulnerabilities in PAN-OS, the software that runs on the company’s...

Eduard KovacsMay 14, 2020

Management & Strategy

Zerodium Expects iOS Exploit Prices to Drop as It Announces Surplus

Exploit acquisition firm Zerodium announced this week that it’s no longer buying certain types of iOS exploits due to surplus, and the company expects...

Eduard KovacsMay 14, 2020

Vulnerabilities

Flaw in WordPress Plugin Grants Access to Google Search Console

A vulnerability that Google has addressed in one of its official WordPress plugins could be abused by attackers to gain access to the Google...

Ionut ArghireMay 14, 2020

Malware & Threats

U.S. Government Issues Alert on Most Exploited Vulnerabilities

Several Microsoft Office vulnerabilities that were patched years ago continue to be among the security flaws most exploited in attacks, the U.S. government warns.

Ionut ArghireMay 13, 2020

Vulnerabilities

Facebook Awards Researcher $20,000 for Account Hijacking Vulnerability

Security researcher Vinoth Kumar says Facebook awarded him $20,000 after he discovered and reported a Document Object Model-based cross-site scripting (DOM XSS) vulnerability that...

Ionut ArghireMay 13, 2020

Vulnerabilities

SAP’s May 2020 Security Updates Include Six Critical Patches

SAP’s May 2020 Security Patch Day updates, which the company released on Tuesday, include a total of 18 Security Notes and 4 updates to...

Ionut ArghireMay 13, 2020

ICS/OT

Siemens Says Power Meters Affected by Urgent/11 Vulnerabilities

Siemens informed customers on Tuesday that some of its low and high voltage power meters are affected by the Wind River VxWorks vulnerabilities dubbed...

Eduard KovacsMay 13, 2020

Data Protection

Thousands of Android Apps Leak Data Due to Firebase Misconfigurations

Comparitech security researchers have discovered that thousands of Android applications distributed through Google Play leak sensitive information due to Firebase misconfigurations.

Ionut ArghireMay 13, 2020

Vulnerabilities

Microsoft’s May 2020 Security Updates Patch 111 Vulnerabilities

Microsoft's May 2020 security updates patch 111 vulnerabilities, including 16 rated critical, but none of them has been exploited in attacks or disclosed before...

Eduard KovacsMay 13, 2020

Vulnerabilities

Adobe Patches 36 Vulnerabilities in Acrobat, DNG SDK

Adobe has patched a total of 36 vulnerabilities in its Acrobat and Reader products and the DNG software development kit (SDK).

Eduard KovacsMay 12, 2020

Vulnerabilities

Vulnerabilities in ‘Page Builder’ Plugin Expose 1 Million WordPress Websites

Two high-severity vulnerabilities addressed recently in SiteOrigin’s Page Builder WordPress plugin could allow an attacker to execute code in a website administrator’s browser.

Ionut ArghireMay 12, 2020

Cyber Insurance

Researchers Analyze Entry Points, Vectors for Manufacturing System Attacks

Researchers from cybersecurity firm Trend Micro and the Polytechnic University of Milan have analyzed the possible entry points and vectors for attacks targeting smart...

Eduard KovacsMay 12, 2020

Cybercrime

VMware to Patch Recent Salt Vulnerabilities in vROps

VMware is working on patches for its vRealize Operations Manager (vROps) product to fix two recently disclosed Salt vulnerabilities that have already been exploited...

Eduard KovacsMay 11, 2020

Endpoint Security

Thunderspy: More Thunderbolt Flaws Expose Millions of Computers to Attacks

A researcher has disclosed the details of a new attack method that targets devices with a Thunderbolt port, allowing malicious actors to access a...

Eduard KovacsMay 11, 2020

Cybercrime

Elementor Plugin Vulnerabilities Exploited to Hack WordPress Sites

Threat actors are actively targeting a vulnerability in the Elementor Pro plugin for WordPress to compromise websites, WordPress security company Defiant warned this week.

Ionut ArghireMay 8, 2020

Mobile & Wireless

Samsung Patches Critical 0-Click Vulnerability in Smartphones

Samsung this week released its May 2020 set of security updates for Android smartphones, which includes a patch for a critical vulnerability impacting all...

Ionut ArghireMay 7, 2020

Network Security

Cisco Patches High Severity Vulnerabilities in Security Products

Cisco Patches High Severity Vulnerabilities in Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)Cisco this week released security updates to address more than...

Ionut ArghireMay 7, 2020

Page 203 of 424« First ‹ Previous 199 200 201 202203204 205 206 207 Next ›Last »

Webinar: How Modern Breaches Bypass MFA and Evade Detection

June 17, 2026

Today’s attackers are no longer breaking in — they’re logging in. Join this live webinar as we break down the modern identity attack chain and examine how recent breaches exploited weaknesses in authentication, identity verification, and access management processes.

Webinar: Modern Exposure Validation in the AI Era

June 24, 2026

AI has accelerated both sides of the fight. Adversaries are weaponizing vulnerabilities faster, while defenders are racing to ship detections and configurations. Join this live webinar as we explore how to prove your controls actually hold against new threats, map your security maturity, and unite breach simulation with automated pentesting into a single, coordinated program.

SECURITYWEEK NETWORK:

ICS:

Malware & Threats

In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum

Vulnerabilities

Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure

Vulnerabilities

Majority of Internet-Accessible REDCap Servers Outdated

Vulnerabilities

No Exploits Required

Email Security

Over 6,400 Edison Mail Users Hit by Security Bug in iOS App

Vulnerabilities

Hackers Can Inject Code Into WordPress Sites via Flaw in Product Review Plugin

ICS/OT

Vulnerabilities in SoftPAC Virtual Controller Expose OT Networks to Attacks

Network Security

Palo Alto Networks Patches Many Vulnerabilities in PAN-OS

Management & Strategy

Zerodium Expects iOS Exploit Prices to Drop as It Announces Surplus

Vulnerabilities

Flaw in WordPress Plugin Grants Access to Google Search Console

Malware & Threats

U.S. Government Issues Alert on Most Exploited Vulnerabilities

Vulnerabilities

Facebook Awards Researcher $20,000 for Account Hijacking Vulnerability

Vulnerabilities

SAP’s May 2020 Security Updates Include Six Critical Patches

ICS/OT

Siemens Says Power Meters Affected by Urgent/11 Vulnerabilities

Data Protection

Thousands of Android Apps Leak Data Due to Firebase Misconfigurations

Vulnerabilities

Microsoft’s May 2020 Security Updates Patch 111 Vulnerabilities

Vulnerabilities

Adobe Patches 36 Vulnerabilities in Acrobat, DNG SDK

Vulnerabilities

Vulnerabilities in ‘Page Builder’ Plugin Expose 1 Million WordPress Websites

Cyber Insurance

Researchers Analyze Entry Points, Vectors for Manufacturing System Attacks

Cybercrime

VMware to Patch Recent Salt Vulnerabilities in vROps

Endpoint Security

Thunderspy: More Thunderbolt Flaws Expose Millions of Computers to Attacks

Cybercrime

Elementor Plugin Vulnerabilities Exploited to Hack WordPress Sites

Mobile & Wireless

Samsung Patches Critical 0-Click Vulnerability in Smartphones

Network Security

Cisco Patches High Severity Vulnerabilities in Security Products

Daily Briefing Newsletter

Trending

Webinar: How Modern Breaches Bypass MFA and Evade Detection

Webinar: Modern Exposure Validation in the AI Era

People on the move

Expert Insights

No Exploits Required

After AI Reaches Production: 12 Ways Security Teams Can Take Control

Everybody Is Vibe Coding But Nobody Told the Security Team

The Zero-Knowledge Threat Actor and the End of Responsible Disclosure

Raising the Cybersecurity Stakes: Ante up for the Agentic Era

Daily Briefing Newsletter