Vulnerabilities

Microsoft Patches Exploited Power Pages Vulnerability

exploited, Featured, Microsoft, Power Pages, Vulnerabilities /

Microsoft Patches Exploited Power Pages Vulnerability 2025-02-20 at 12:49 By Eduard Kovacs Microsoft has patched CVE-2025-24989, a Power Pages privilege escalation vulnerability that has been exploited in attacks. The post Microsoft Patches Exploited Power Pages Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Microsoft Patches Exploited Power Pages Vulnerability Read More »

OpenSSH Patches Vulnerabilities Allowing MitM, DoS Attacks

DoS, MITM, OpenSSH, Vulnerabilities /

OpenSSH Patches Vulnerabilities Allowing MitM, DoS Attacks 2025-02-19 at 15:41 By Ionut Arghire The latest OpenSSH update patches two vulnerabilities, including one that enabled MitM attacks with no user interaction. The post OpenSSH Patches Vulnerabilities Allowing MitM, DoS Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Loading spinner

OpenSSH Patches Vulnerabilities Allowing MitM, DoS Attacks Read More »

Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities

Chrome, Firefox, Vulnerabilities, vulnerability /

Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities 2025-02-19 at 15:01 By Ionut Arghire Google and Mozilla resolve high-severity memory safety vulnerabilities with the latest Chrome and Firefox security updates. The post Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

Chrome 133, Firefox 135 Updates Patch High-Severity Vulnerabilities Read More »

The Rise of Email Marketing Platforms for Business Email Compromise Attacks

email security, Emerging Threats, Vulnerabilities /

The Rise of Email Marketing Platforms for Business Email Compromise Attacks 2025-02-18 at 21:49 By Maria Katrina Udquin In a statistical report published in September 2024 by the Federal Bureau of Investigation (FBI), it was revealed that more than US$55 billion was lost to business email compromise (BEC) attacks between October 2013 and December 2023. This profitability

React to this headline:

Loading spinner

The Rise of Email Marketing Platforms for Business Email Compromise Attacks Read More »

Critical Vulnerability Patched in Juniper Session Smart Router

Juniper, Vulnerabilities, vulnerability /

Critical Vulnerability Patched in Juniper Session Smart Router 2025-02-18 at 15:34 By Eduard Kovacs A critical vulnerability tracked as CVE-2025-21589 has been patched in Juniper Networks’ Session Smart Router. The post Critical Vulnerability Patched in Juniper Session Smart Router appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Loading spinner

Critical Vulnerability Patched in Juniper Session Smart Router Read More »

Palo Alto Networks Confirms Exploitation of Firewall Vulnerability

exploited, Featured, firewall, Palo Alto Networks, Vulnerabilities /

Palo Alto Networks Confirms Exploitation of Firewall Vulnerability 2025-02-18 at 13:20 By Eduard Kovacs Palo Alto Networks has confirmed that a recently patched firewall vulnerability tracked as CVE-2025-0108 is being actively exploited. The post Palo Alto Networks Confirms Exploitation of Firewall Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Palo Alto Networks Confirms Exploitation of Firewall Vulnerability Read More »

Xerox Versalink Printer Vulnerabilities Enable Lateral Movement

Endpoint Security, printer, Vulnerabilities, vulnerability, Xerox /

Xerox Versalink Printer Vulnerabilities Enable Lateral Movement 2025-02-17 at 13:03 By Ionut Arghire Xerox released security updates to resolve pass-back attack vulnerabilities in Versalink multifunction printers. The post Xerox Versalink Printer Vulnerabilities Enable Lateral Movement appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Xerox Versalink Printer Vulnerabilities Enable Lateral Movement Read More »

Meta Paid Out Over $2.3 Million in Bug Bounties in 2024

bug bounty program, Meta, Vulnerabilities /

Meta Paid Out Over $2.3 Million in Bug Bounties in 2024 2025-02-14 at 15:37 By Ionut Arghire Meta received close to 10,000 vulnerability reports and paid out over $2.3 million in bug bounty rewards in 2024. The post Meta Paid Out Over $2.3 Million in Bug Bounties in 2024 appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Meta Paid Out Over $2.3 Million in Bug Bounties in 2024 Read More »

SonicWall Firewall Vulnerability Exploited After PoC Publication

exploited, firewall, SonicWall, Vulnerabilities, vulnerability /

SonicWall Firewall Vulnerability Exploited After PoC Publication 2025-02-14 at 14:36 By Ionut Arghire The exploitation of a recent SonicWall vulnerability has started shortly after proof-of-concept (PoC) code was published. The post SonicWall Firewall Vulnerability Exploited After PoC Publication appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

Loading spinner

SonicWall Firewall Vulnerability Exploited After PoC Publication Read More »

New Windows Zero-Day Exploited by Chinese APT: Security Firm

China, exploited, Mustang Panda, Vulnerabilities, Windows, Zero-Day /

New Windows Zero-Day Exploited by Chinese APT: Security Firm 2025-02-14 at 13:52 By Eduard Kovacs ClearSky Cyber Security says it has seen a new Windows zero-day being exploited by a Chinese APT named Mustang Panda.  The post New Windows Zero-Day Exploited by Chinese APT: Security Firm appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

New Windows Zero-Day Exploited by Chinese APT: Security Firm Read More »

Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure

exploited, firewall, Palo Alto Networks, Vulnerabilities /

Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure 2025-02-14 at 13:24 By Eduard Kovacs Attempts to exploit CVE-2024-0108, an authentication bypass vulnerability in Palo Alto firewalls, started one day after disclosure.  The post Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure Read More »

Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation

BeyondTrust, CVE-2024-12356, CVE-2025-1094, Nation-State, Rapid7, Treasury, Vulnerabilities /

Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation 2025-02-13 at 22:20 By Ryan Naraine Rapid7 finds a new zero-day vulnerability in PostgreSQL and links it to chain of attacks against a BeyondTrust Remote Support product. The post Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation Read More »

The Threat Within: Understanding the Role of Malicious Insiders in Cyberattacks

data breach, Emerging Threats, Vulnerabilities /

The Threat Within: Understanding the Role of Malicious Insiders in Cyberattacks 2025-02-13 at 20:33 By Understanding Insider Threats: Learn how insider threats in the financial sector have evolved, driven by malicious insiders and cybercriminals leveraging employee access for harmful purposes. Factors Driving Malicious Behavior: Discover the key motivations behind insider threats, from financial gain to personal grievances

React to this headline:

Loading spinner

The Threat Within: Understanding the Role of Malicious Insiders in Cyberattacks Read More »

Palo Alto Networks Patches Potentially Serious Firewall Vulnerability

firewall, Palo Alto Networks, PAN-OS, Vulnerabilities, vulnerability /

Palo Alto Networks Patches Potentially Serious Firewall Vulnerability 2025-02-13 at 14:05 By Eduard Kovacs Palo Alto Networks has published 10 new security advisories, including one for a high-severity firewall authentication bypass vulnerability. The post Palo Alto Networks Patches Potentially Serious Firewall Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Palo Alto Networks Patches Potentially Serious Firewall Vulnerability Read More »

Exploitation of Old ThinkPHP, OwnCloud Vulnerabilities Surges

exploited, ownCloud, ThinkPHP, Vulnerabilities, vulnerability /

Exploitation of Old ThinkPHP, OwnCloud Vulnerabilities Surges 2025-02-13 at 13:33 By Ionut Arghire Threat actors are increasingly exploiting two old vulnerabilities in ThinkPHP and OwnCloud in their attacks. The post Exploitation of Old ThinkPHP, OwnCloud Vulnerabilities Surges appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Exploitation of Old ThinkPHP, OwnCloud Vulnerabilities Surges Read More »

Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability

Chrome, Vulnerabilities, vulnerability /

Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability 2025-02-13 at 13:00 By Ionut Arghire Google has released a Chrome 133 update to address four high-severity vulnerabilities reported by external researchers. The post Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability Read More »

Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities

Fortinet, Ivanti, patch, Vulnerabilities, vulnerability /

Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities 2025-02-12 at 15:45 By Ionut Arghire Ivanti and Fortinet on Tuesday released patches for multiple critical- and high-severity vulnerabilities in their products. The post Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

Loading spinner

Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities Read More »

Chipmaker Patch Tuesday: Intel, AMD, Nvidia Fix High-Severity Vulnerabilities

Amd, Chipmaker Patch Tuesday, CPU vulnerability, Intel, NVIDIA, Vulnerabilities /

Chipmaker Patch Tuesday: Intel, AMD, Nvidia Fix High-Severity Vulnerabilities 2025-02-12 at 14:01 By Eduard Kovacs Chipmakers Intel, AMD and Nvidia on Tuesday published new security advisories to inform customers about vulnerabilities found in their products.  The post Chipmaker Patch Tuesday: Intel, AMD, Nvidia Fix High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Chipmaker Patch Tuesday: Intel, AMD, Nvidia Fix High-Severity Vulnerabilities Read More »

Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day

CVE-2025-21391, CVE-2025-21418, Malware & Threats, Microsoft, Patch Tuesday, Vulnerabilities, Zero-Day /

Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day 2025-02-11 at 22:06 By Ryan Naraine The Microsoft Patch Tuesday machine hummed loudly this month urgent fixes for a pair of already-exploited Windows zero-days. The post Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day Read More »

Adobe Plugs 45 Software Security Holes, Warn of Code Execution Risks

Adobe, Adobe Commerce, Malware & Threats, Patch Tuesday, Photoshop, remote code execution, Vulnerabilities /

Adobe Plugs 45 Software Security Holes, Warn of Code Execution Risks 2025-02-11 at 21:33 By Ryan Naraine Patch Tuesday: Adobe patches 45 vulnerabilities across multiple products and warn of remote code execution exploitation risks. The post Adobe Plugs 45 Software Security Holes, Warn of Code Execution Risks appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Adobe Plugs 45 Software Security Holes, Warn of Code Execution Risks Read More »

Scroll to Top