CrushFTP patches a zero-day vulnerability allowing unauthenticated attackers to escape the VFS and retrieve system files.
Hi, what are you looking for?
CrushFTP patches a zero-day vulnerability allowing unauthenticated attackers to escape the VFS and retrieve system files.
Shadowserver has identified roughly 6,000 internet-accessible Palo Alto Networks firewalls potentially vulnerable to CVE-2024-3400.
MITRE R&D network hacked in early January by a state-sponsored threat group that exploited an Ivanti zero-day vulnerability.
Cannes Hospital Centre – Simone Veil cancels medical procedures after shutting down systems in response to a cyberattack.
Investors make an early-stage $6.5 million bet on BreachRx, a startup promising to shield cybersecurity executives from personal liability.
VulnCheck banks $8 million in early stage capital to build 'exploit intelligence' technologies and services.
Noteworthy stories that might have slipped under the radar: OpenSSF and OpenJS incidents similar to XZ backdoor, Moldovan botnet operator charged, US automotive company targeted by FIN7.
While over 400 AI-related bills are being debated this year in statehouses nationwide, most target one industry or just a piece of the technology — such as deepfakes used in elections.
New US guidance details foreign malign influence operations to help election infrastructure stakeholders increase resilience.
Akira ransomware has hit over 250 organizations worldwide and received over $42 million in ransom payments.
Telecom giant Frontier shuts down systems to contain a cyberattack that led to personal information compromise.
Microsoft warns that several OpenMetadata vulnerabilities are being exploited to deploy cryptomining malware to Kubernetes environments.