Featured

SonicWall Flags Old Vulnerability as Actively Exploited

exploited, Featured, SMA, SonicWall, Vulnerabilities, vulnerability /

SonicWall Flags Old Vulnerability as Actively Exploited 2025-04-17 at 14:05 By Eduard Kovacs A SonicWall SMA 100 series vulnerability patched in 2021, which went unnoticed at the time of patching, is being exploited in the wild. The post SonicWall Flags Old Vulnerability as Actively Exploited appeared first on SecurityWeek. This article is an excerpt from […]

React to this headline:

Loading spinner

SonicWall Flags Old Vulnerability as Actively Exploited Read More »

Apple Quashes Two Zero-Days With iOS, MacOS Patches

apple, CVE-2025-31200, CVE-2025-31201, Featured, iOS 18.4.1, macOS, Malware & Threats, Vulnerabilities, Zero-Day /

Apple Quashes Two Zero-Days With iOS, MacOS Patches 2025-04-16 at 23:38 By Ryan Naraine The vulnerabilities are described as code execution and mitigation bypass issues that affect Apple’s iOS, iPadOS and macOS platforms. The post Apple Quashes Two Zero-Days With iOS, MacOS Patches appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Apple Quashes Two Zero-Days With iOS, MacOS Patches Read More »

MITRE CVE Program Gets Last-Hour Funding Reprieve

CISA, CVE, CVE Program, Featured, Government, MITRE, Vulnerabilities /

MITRE CVE Program Gets Last-Hour Funding Reprieve 2025-04-16 at 19:36 By Ryan Naraine The US government’s cybersecurity agency CISA has “executed the option period on the contract” to keep the vulnerability catalog operational. The post MITRE CVE Program Gets Last-Hour Funding Reprieve appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

MITRE CVE Program Gets Last-Hour Funding Reprieve Read More »

MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty

CVE, Featured, Government, MITRE, NIST, NVD, Vulnerabilities /

MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty 2025-04-15 at 23:46 By Ryan Naraine MITRE warns of a deterioration of national vulnerability databases and advisories, slowed vendor reaction and limited response operations. The post MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty Read More »

China Pursuing 3 Alleged US Operatives Over Cyberattacks During Asian Games

China, Featured, Nation-State, NSA /

China Pursuing 3 Alleged US Operatives Over Cyberattacks During Asian Games 2025-04-15 at 14:01 By Associated Press China accuses three alleged U.S. NSA operatives of cyberattacks targeting critical infrastructure and the Asian Games in Harbin. The post China Pursuing 3 Alleged US Operatives Over Cyberattacks During Asian Games appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

China Pursuing 3 Alleged US Operatives Over Cyberattacks During Asian Games Read More »

Hertz Discloses Data Breach Linked to Cleo Hack

data breach, Data Breaches, Featured, Hertz /

Hertz Discloses Data Breach Linked to Cleo Hack 2025-04-15 at 13:16 By Ionut Arghire Customers of the Hertz, Thrifty, and Dollar brands had their personal information stolen as a result of the Cleo hack last year. The post Hertz Discloses Data Breach Linked to Cleo Hack appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Hertz Discloses Data Breach Linked to Cleo Hack Read More »

CISO Conversations: Maarten Van Horenbeeck, SVP & Chief Security officer at Adobe

CISO, CISO Conversations, CISO Strategy, Featured, Uncategorized /

CISO Conversations: Maarten Van Horenbeeck, SVP & Chief Security officer at Adobe 2025-04-15 at 13:02 By Kevin Townsend Van Horenbeeck’s career spans some of the biggest companies in tech: Verizon, Microsoft, Google, Amazon, Zendesk, and now SVP and CSO at Adobe. The post CISO Conversations: Maarten Van Horenbeeck, SVP & Chief Security officer at Adobe

React to this headline:

Loading spinner

CISO Conversations: Maarten Van Horenbeeck, SVP & Chief Security officer at Adobe Read More »

AI Hallucinations Create a New Software Supply Chain Threat

AI, Featured, Gen-AI, supply chain, Supply Chain Security /

AI Hallucinations Create a New Software Supply Chain Threat 2025-04-14 at 16:07 By Ionut Arghire Researchers uncover new software supply chain threat from LLM-generated package hallucinations. The post AI Hallucinations Create a New Software Supply Chain Threat appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

AI Hallucinations Create a New Software Supply Chain Threat Read More »

China Admitted to US That It Conducted Volt Typhoon Attacks: Report

China, critical infrastructure, Featured, Government, Nation-State, US, Volt Typhoon /

China Admitted to US That It Conducted Volt Typhoon Attacks: Report 2025-04-11 at 13:14 By Eduard Kovacs In a secret meeting between Chinese and US officials, the former confirmed conducting cyberattacks on US infrastructure. The post China Admitted to US That It Conducted Volt Typhoon Attacks: Report appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

China Admitted to US That It Conducted Volt Typhoon Attacks: Report Read More »

Treasury’s OCC Says Hackers Had Access to 150,000 Emails

email security, Featured, Government, OCC, Treasury /

Treasury’s OCC Says Hackers Had Access to 150,000 Emails 2025-04-09 at 14:48 By Eduard Kovacs The Office of the Comptroller of the Currency (OCC) has disclosed an email security incident in which 100 accounts were compromised for over a year.  The post Treasury’s OCC Says Hackers Had Access to 150,000 Emails appeared first on SecurityWeek.

React to this headline:

Loading spinner

Treasury’s OCC Says Hackers Had Access to 150,000 Emails Read More »

Microsoft Patches 125 Windows Vulns, Including Exploited CLFS Zero-Day

CVE-2025-29824, Featured, Malware & Threats, Microsoft, Patch Tuesday, Vulnerabilities, Windows CLFS, Zero-Day /

Microsoft Patches 125 Windows Vulns, Including Exploited CLFS Zero-Day 2025-04-08 at 22:03 By Ryan Naraine Patch Tuesday: Microsoft ships urgent cover for another WIndows CLFS vulnerability already exploited in the wild. The post Microsoft Patches 125 Windows Vulns, Including Exploited CLFS Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Microsoft Patches 125 Windows Vulns, Including Exploited CLFS Zero-Day Read More »

Android Update Patches Two Exploited Vulnerabilities

Android, Cellebrite, exploited, Featured, Mobile & Wireless, USB /

Android Update Patches Two Exploited Vulnerabilities 2025-04-08 at 13:26 By Ionut Arghire Android’s latest security update resolves two exploited Kernel vulnerabilities, as well as critical-severity bugs. The post Android Update Patches Two Exploited Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Android Update Patches Two Exploited Vulnerabilities Read More »

Call Records of Millions Exposed by Verizon App Vulnerability

Application Security, call records, Featured, Mobile & Wireless, Verizon, vulnerability /

Call Records of Millions Exposed by Verizon App Vulnerability 2025-04-04 at 19:00 By Eduard Kovacs A patch has been released for a serious information disclosure vulnerability affecting a Verizon call filtering application. The post Call Records of Millions Exposed by Verizon App Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Call Records of Millions Exposed by Verizon App Vulnerability Read More »

Oracle Confirms Cloud Hack

cloud security, controversy, data breach, Featured, Oracle, Oracle Cloud /

Oracle Confirms Cloud Hack 2025-04-04 at 13:36 By Eduard Kovacs Oracle has confirmed suffering a data breach but the tech giant is apparently trying to downplay the impact of the incident. The post Oracle Confirms Cloud Hack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Oracle Confirms Cloud Hack Read More »

Details Emerge on CVE Controversy Around Exploited CrushFTP Vulnerability 

CrushFTP, CVE, exploited, Featured, Vulnerabilities /

Details Emerge on CVE Controversy Around Exploited CrushFTP Vulnerability  2025-04-03 at 13:31 By Eduard Kovacs Two CVEs now exist for an actively exploited CrushFTP vulnerability and much of the security industry is using the ‘wrong one’. The post Details Emerge on CVE Controversy Around Exploited CrushFTP Vulnerability  appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Details Emerge on CVE Controversy Around Exploited CrushFTP Vulnerability  Read More »

Google DeepMind Unveils Framework to Exploit AI’s Cyber Weaknesses

AI, Artificial Intelligence, DeepMind, Featured, Google, Vulnerabilities /

Google DeepMind Unveils Framework to Exploit AI’s Cyber Weaknesses 2025-04-02 at 16:47 By Kevin Townsend DeepMind found that current AI frameworks are ad hoc, not systematic, and fail to provide defenders with useful insights. The post Google DeepMind Unveils Framework to Exploit AI’s Cyber Weaknesses appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Google DeepMind Unveils Framework to Exploit AI’s Cyber Weaknesses Read More »

Check Point Responds to Hacking Claims

Check Point, cybercrime, data breach, Data leak, Featured, hacked, security company hacked /

Check Point Responds to Hacking Claims 2025-04-01 at 14:04 By Ionut Arghire Check Point has responded to a hacker’s claims of sensitive data theft, confirming an incident but saying that it had limited impact. The post Check Point Responds to Hacking Claims appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Check Point Responds to Hacking Claims Read More »

Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia

Chrome, exploited, Featured, Firefox, sandbox escape, Vulnerabilities, Zero-Day /

Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia 2025-03-28 at 12:26 By Eduard Kovacs Firefox developers have determined that their browser is affected by a vulnerability similar to the recent Chrome sandbox escape zero-day. The post Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia Read More »

More Solar System Vulnerabilities Expose Power Grids to Hacking 

energy, Featured, ICS, ICS/OT, solar, Vulnerabilities, vulnerability /

More Solar System Vulnerabilities Expose Power Grids to Hacking  2025-03-27 at 12:32 By Eduard Kovacs Forescout has found dozens of vulnerabilities in solar power systems from Sungrow, Growatt and SMA. The post More Solar System Vulnerabilities Expose Power Grids to Hacking  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

More Solar System Vulnerabilities Expose Power Grids to Hacking  Read More »

IngressNightmare Flaws Expose Many Kubernetes Clusters to Remote Hacking

cloud security, Featured, IngressNightmare, Kubernetes, Vulnerabilities /

IngressNightmare Flaws Expose Many Kubernetes Clusters to Remote Hacking 2025-03-25 at 12:17 By Eduard Kovacs Critical remote code execution vulnerabilities found by Wiz researchers in Ingress NGINX Controller for Kubernetes. The post IngressNightmare Flaws Expose Many Kubernetes Clusters to Remote Hacking appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

IngressNightmare Flaws Expose Many Kubernetes Clusters to Remote Hacking Read More »

Scroll to Top