Vulnerabilities
An analysis of a widely-used repository for open source components revealed that Global 500 organizations collectively downloaded more than 2.8 million insecure components in...
Hi, what are you looking for?
SecurityWeek
Vulnerabilities
Threat actors have exploited a zero-day vulnerability in Craft CMS to execute PHP code on hundreds of websites.
Vulnerabilities
A zero-day vulnerability in SAP NetWeaver potentially affects more than 10,000 internet-facing applications.
Vulnerabilities
Cisco is investigating the impact of the Erlang/OTP remote code execution vulnerability CVE-2025-32433 on its products.
Threat Intelligence
Desired Effect provides an ethical vulnerability exchange marketplace to help defenders get ahead of attackers.
Vulnerabilities
A vulnerability in SSL.com has resulted in nearly a dozen certificates for legitimate domains being wrongly issued.
Vulnerabilities
A Windows NTLM vulnerability patched in March has been exploited in attacks targeting government and private institutions.
Network Security
Microsoft made lots of news recently with the disclosure that a key vulnerability (MS12-020) involving the RDP protocol had been leaked, apparently from Microsoft’s...
Cloud Security
eEye Digital Security released a new piece of freeware today for checking system configurations in the name of security.The tool was released on the...
Management & Strategy
Attackers are adapting their techniques as software vendors get better at patching vulnerabilities, according to a new report from IBM. In its X-Force 2011...
Application Security
A new survey of developers and security professionals revealed that many organizations are still not baking security into the application development process.According to research...
Network Security
It has been close to four years since the birth of the Microsoft Active Protections Program (MAPP). The program is meant to give security...
Vulnerabilities
According to data collected by security researcher Dan Kaminsky, the recently disclosed RDP vulnerability in Windows has a potential attack surface equal to millions...
Vulnerabilities
Microsoft is urging organizations to apply the sole critical update in this month’s Patch Tuesday release as soon as possible.The critical bulletin – one...
Vulnerabilities
Apple Criticized Once Again for Its Silience and Uncooperative Ways When It Comes to Fixing Vulnerabilities in its Products
Vulnerabilities
Microsoft has a relatively quiet Patch Tuesday planned for this month, with just six bulletins on the way for next week.
Vulnerabilities
Ford Testing Firmware Update Program, Encourages Customers to Have a Unique USB for Each Ford They OwnThis month, Ford is borrowing something from the...
Vulnerabilities
Google showed a great deal of confidence ahead of the CanSecWest conference this year when it announced plans to offer up to $1 million...
CISO Strategy
This tension between hard-edged risk realism and breathless AI evangelism sets an unmistakable tone for a bellwether conference where 40,000-plus gather to do business.
Management & Strategy
Data Breaches
Artificial Intelligence
Management & Strategy
IBM will invest more than $30 billion in research and development to advance and continue its American manufacturing of mainframe and quantum computers.
Cybersecurity Funding
Cloud Security
Data Breaches