Network Security
Back on April 12, 2011, a report from independent security testing organization NSS Labs, warned of a vulnerability affecting industry-leading firewalls, including a sneak...
Hi, what are you looking for?
SecurityWeek
Malware & Threats
Exploitation of Windows MMC zero-day is being pinned on a ransomware gang known as EncryptHub (an affiliate of RansomHub)
ICS/OT
Production line monitoring cameras made by Inaba can be hacked for surveillance and sabotage, but they remain unpatched.
Vulnerabilities
Threat actors have started probing servers impacted by a critical-severity vulnerability in the web application development framework Next.js.
Cyberwarfare
The vulnerability, tracked as CVE-2025-2783, was chained with a second exploit for remote code execution in attacks targeting organizations in Russia.
Vulnerabilities
The authentication bypass vulnerability, tagged as CVE-2025-22230, carries a CVSS severity score of 7.8/10.
Government
The effects of the backlog are already being felt in vulnerability management circles where NVD data promises an enriched source of truth.
Vulnerabilities
Virtual Patching Takes the Pain out of Defending against SQL injection Attacks Like LizaMoon
Vulnerabilities
Back in July 2010 at the Black Hat conference in Las Vegas, Microsoft announced that it would move to a new vulnerability disclosure process...
Vulnerabilities
As expected, Oracle has issued a critical patch update containing 73 new security vulnerability fixes across hundreds of its products. Oracle also warns that...
Security Architecture
Veracode Report Uncovers Significant Weaknesses in Security Vendor Applications. Shows Slight Decline in the Percentage of SQL Injection Errors Across All Industry Applications, While...
Incident Response
Many Voice Concern Over Database Giant’s Response to High Risk Vulnerabilities(Update 4/19 - Oracle Released The Critical Patch Update as Expected)
Vulnerabilities
Oracle has issued a critical patch update pre-release announcement saying that on Tuesday, April 19, 2011 the database giant will release will release a...
Vulnerabilities
Apple released several security updates this week, addressing a number of vulnerabilities across its products ranging from Mac OS X to its Safari Web...
Network Security
Rapid7 and Sourcefire today announced a product integration which enables Sourcefire’s 3D System to integrate active vulnerability data from Rapid7’s active scanning solution, NeXpose...
Vulnerabilities
Aggressive initiatives by the makers of popular Web browsers including Google, Microsoft, and Mozilla to improve the security of their Web browsers appear to...
Application Security
NEI, a Canton, Massachusetts provider of solutions for software technology developers and OEMs, today announced that it has been awarded a US Patent for...
Vulnerabilities
Chicago based Trustwave, a provider of security and compliance solutions, today released a tool that provides its enterprise clients the ability to manage all...
Hacker Conversations
Frank Trezza is fairly typical of most hackers. Early pranks sometimes leading to something more serious.
Supply Chain Security
Mobile & Wireless
Cloud Security
Malware & Threats
AMTSO has developed a Sandbox Evaluation Framework to standardize the testing of malware analysis solutions.
Artificial Intelligence
