Vulnerabilities Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Vulnerabilities

Craft CMS Zero-Day Exploited to Compromise Hundreds of Websites

Threat actors have exploited a zero-day vulnerability in Craft CMS to execute PHP code on hundreds of websites.

Ionut Arghire17 hours ago

Vulnerabilities

SAP Zero-Day Possibly Exploited by Initial Access Broker

A zero-day vulnerability in SAP NetWeaver potentially affects more than 10,000 internet-facing applications.

Ionut Arghire4 days ago

Vulnerabilities

Cisco Confirms Some Products Impacted by Critical Erlang/OTP Flaw

Cisco is investigating the impact of the Erlang/OTP remote code execution vulnerability CVE-2025-32433 on its products.

Eduard Kovacs5 days ago

Threat Intelligence

Ethical Zero Day Marketplace Desired Effect Emerges From Stealth

Desired Effect provides an ethical vulnerability exchange marketplace to help defenders get ahead of attackers.

Kevin Townsend6 days ago

Vulnerabilities

SSL.com Scrambles to Patch Certificate Issuance Vulnerability

A vulnerability in SSL.com has resulted in nearly a dozen certificates for legitimate domains being wrongly issued.

Ionut Arghire7 days ago

Vulnerabilities

Fresh Windows NTLM Vulnerability Exploited in Attacks

A Windows NTLM vulnerability patched in March has been exploited in attacks targeting government and private institutions.

Ionut ArghireApril 18, 2025

Vulnerabilities

Skimmers are Getting Lucky – The Need to Improve Security of POS Systems

Sometime around the beginning of November, thieves managed to insert an additional circuit board into the self checkout Point of Sale (POS) machines Lucky’s...

Robert VamosiDecember 12, 2011

Vulnerabilities

Free Tool Provides Point and Click SQL Injection Vulnerability Scanning

NT OBJECTives, an application security vendor based in Irvine, California, has released a new tool that not only scans for SQL Injection vulnerabilities, but...

Steve RaganDecember 10, 2011

Network Security

Researchers Confirm Attackers Targeted Defense Firms with Adobe Reader Zero-day

Security researchers have uncovered more details about the recent Adobe Reader and Acrobat exploit that is being used in attacks targeting U.S. defense firms....

Brian PrinceDecember 8, 2011

Vulnerabilities

Adobe Warns of Critical Zero-Day Vulnerability in Reader and Acrobat, Possibly Targeting Defense Firms

Updated Story: Researchers Confirm Attackers Targeted Defense Firms with Adobe Reader Zero-day

Brian PrinceDecember 6, 2011

Application Security

Qualys Enhances Web Application Scanning Tool, Partners with MS-ISAC

Software-as-a-Service (SaaS) security solutions vendor Qualys, today announced updates to its QualysGuard Web Application Scanning suite, including the ability to integrate with Selenium, the...

Mike LennonDecember 6, 2011

Vulnerabilities

HP Printer Firmware Vulnerabilities: FUD or Fire?

Is the Potential of an Attacker Setting a Printer on Fire Really What IT Security Departments Should be Worried About?

Mike LennonDecember 5, 2011

Malware & Threats

Endless Exploit Attempts Underline Importance of Timely Java Patching

The appearance of a new exploit has helped turn the spotlight this week on a common target of attackers – Java software.

Brian PrinceDecember 2, 2011

Vulnerabilities

ISC Issues Fix for Server-Crashing Vulnerability in BIND

The Internet Software Consortium (ISC) has issued a fix for a bug in the BIND server software that has triggered crashes at organizations across...

Brian PrinceNovember 17, 2011

Cybersecurity Funding

Rapid7 Scores a Massive $50 Million Round of Funding

Boston-based Rapid7, a provider of vulnerability management and penetration testing solutions, today announced that it has secured $50 million in a series C round...

Mike LennonNovember 17, 2011

Vulnerabilities

Authorities Voice Fears of Hacker-Initiated Prison Jailbreaks

Prison authorities are concerned about new security research demonstrating how attackers can hack into the industrial control systems used in the nation’s penitentiaries.

Brian PrinceNovember 10, 2011

Vulnerabilities

Alcatel-Lucent Backed Firm Offers New Source on Security Threats

Kindsight, an Alcatel-Lucent backed company that works with ISPs to analyze the behavior from their customer’s computers, has launched a new portal that details...

Steve RaganNovember 9, 2011

Vulnerabilities

Microsoft and Adobe Address Critical Security Vulnerabilities in Latest Patch Updates

Microsoft and Adobe Systems each released patches today to address critical security vulnerabilities in their products. For Patch Tuesday, Microsoft issued four security bulletins...

Brian PrinceNovember 8, 2011