Vulnerabilities

Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation

BeyondTrust, CVE-2024-12356, CVE-2025-1094, Nation-State, Rapid7, Treasury, Vulnerabilities /

Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation 2025-02-13 at 22:20 By Ryan Naraine Rapid7 finds a new zero-day vulnerability in PostgreSQL and links it to chain of attacks against a BeyondTrust Remote Support product. The post Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation appeared first on SecurityWeek. This article is an […]

React to this headline:

Loading spinner

Rapid7 Flags New PostgreSQL Zero-Day Connected to BeyondTrust Exploitation Read More »

The Threat Within: Understanding the Role of Malicious Insiders in Cyberattacks

data breach, Emerging Threats, Vulnerabilities /

The Threat Within: Understanding the Role of Malicious Insiders in Cyberattacks 2025-02-13 at 20:33 By Understanding Insider Threats: Learn how insider threats in the financial sector have evolved, driven by malicious insiders and cybercriminals leveraging employee access for harmful purposes. Factors Driving Malicious Behavior: Discover the key motivations behind insider threats, from financial gain to personal grievances

React to this headline:

Loading spinner

The Threat Within: Understanding the Role of Malicious Insiders in Cyberattacks Read More »

Palo Alto Networks Patches Potentially Serious Firewall Vulnerability

firewall, Palo Alto Networks, PAN-OS, Vulnerabilities, vulnerability /

Palo Alto Networks Patches Potentially Serious Firewall Vulnerability 2025-02-13 at 14:05 By Eduard Kovacs Palo Alto Networks has published 10 new security advisories, including one for a high-severity firewall authentication bypass vulnerability. The post Palo Alto Networks Patches Potentially Serious Firewall Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Palo Alto Networks Patches Potentially Serious Firewall Vulnerability Read More »

Exploitation of Old ThinkPHP, OwnCloud Vulnerabilities Surges

exploited, ownCloud, ThinkPHP, Vulnerabilities, vulnerability /

Exploitation of Old ThinkPHP, OwnCloud Vulnerabilities Surges 2025-02-13 at 13:33 By Ionut Arghire Threat actors are increasingly exploiting two old vulnerabilities in ThinkPHP and OwnCloud in their attacks. The post Exploitation of Old ThinkPHP, OwnCloud Vulnerabilities Surges appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Exploitation of Old ThinkPHP, OwnCloud Vulnerabilities Surges Read More »

Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability

Chrome, Vulnerabilities, vulnerability /

Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability 2025-02-13 at 13:00 By Ionut Arghire Google has released a Chrome 133 update to address four high-severity vulnerabilities reported by external researchers. The post Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Google Pays Out $55,000 Bug Bounty for Chrome Vulnerability Read More »

Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities

Fortinet, Ivanti, patch, Vulnerabilities, vulnerability /

Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities 2025-02-12 at 15:45 By Ionut Arghire Ivanti and Fortinet on Tuesday released patches for multiple critical- and high-severity vulnerabilities in their products. The post Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

Loading spinner

Ivanti, Fortinet Patch Remote Code Execution Vulnerabilities Read More »

Chipmaker Patch Tuesday: Intel, AMD, Nvidia Fix High-Severity Vulnerabilities

Amd, Chipmaker Patch Tuesday, CPU vulnerability, Intel, NVIDIA, Vulnerabilities /

Chipmaker Patch Tuesday: Intel, AMD, Nvidia Fix High-Severity Vulnerabilities 2025-02-12 at 14:01 By Eduard Kovacs Chipmakers Intel, AMD and Nvidia on Tuesday published new security advisories to inform customers about vulnerabilities found in their products.  The post Chipmaker Patch Tuesday: Intel, AMD, Nvidia Fix High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

Chipmaker Patch Tuesday: Intel, AMD, Nvidia Fix High-Severity Vulnerabilities Read More »

Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day

CVE-2025-21391, CVE-2025-21418, Malware & Threats, Microsoft, Patch Tuesday, Vulnerabilities, Zero-Day /

Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day 2025-02-11 at 22:06 By Ryan Naraine The Microsoft Patch Tuesday machine hummed loudly this month urgent fixes for a pair of already-exploited Windows zero-days. The post Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Microsoft Patches ‘Wormable’ Windows Flaw and File-Deleting Zero-Day Read More »

Adobe Plugs 45 Software Security Holes, Warn of Code Execution Risks

Adobe, Adobe Commerce, Malware & Threats, Patch Tuesday, Photoshop, remote code execution, Vulnerabilities /

Adobe Plugs 45 Software Security Holes, Warn of Code Execution Risks 2025-02-11 at 21:33 By Ryan Naraine Patch Tuesday: Adobe patches 45 vulnerabilities across multiple products and warn of remote code execution exploitation risks. The post Adobe Plugs 45 Software Security Holes, Warn of Code Execution Risks appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Adobe Plugs 45 Software Security Holes, Warn of Code Execution Risks Read More »

High-Severity OpenSSL Vulnerability Found by Apple Allows MitM Attacks

OpenSSL, Vulnerabilities, vulnerability /

High-Severity OpenSSL Vulnerability Found by Apple Allows MitM Attacks 2025-02-11 at 20:09 By Eduard Kovacs OpenSSL has patched CVE-2024-12797, a high-severity vulnerability found by Apple that can allow man-in-the-middle attacks. The post High-Severity OpenSSL Vulnerability Found by Apple Allows MitM Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

High-Severity OpenSSL Vulnerability Found by Apple Allows MitM Attacks Read More »

SAP Releases 21 Security Patches

Patch Tuesday, SAP, Vulnerabilities, vulnerability /

SAP Releases 21 Security Patches 2025-02-11 at 19:22 By Ionut Arghire SAP has released 19 new and two updated security notes on its February 2025 patch day, including six notes for high-severity vulnerabilities. The post SAP Releases 21 Security Patches appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

SAP Releases 21 Security Patches Read More »

Cyber and Physical Security Considerations for Returning to the Office

Database Protection, Vulnerabilities /

Cyber and Physical Security Considerations for Returning to the Office 2025-02-11 at 16:01 By Kory Daniels When remote work became mandatory in the wake of the 2020 COVID pandemic, organizations had to quickly dispatch staffers to their homes with all the equipment, and services, they would need to do their jobs. This article is an

React to this headline:

Loading spinner

Cyber and Physical Security Considerations for Returning to the Office Read More »

Intel Patched 374 Vulnerabilities in 2024

Intel, Vulnerabilities, vulnerability /

Intel Patched 374 Vulnerabilities in 2024 2025-02-11 at 14:50 By Ionut Arghire Intel says roughly 100 of the 374 vulnerabilities it patched last year were firmware and hardware security defects. The post Intel Patched 374 Vulnerabilities in 2024 appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

Loading spinner

Intel Patched 374 Vulnerabilities in 2024 Read More »

Microsoft Expands Copilot Bug Bounty Program, Increases Payouts

AI, Artificial Intelligence, bug bounty program, Copilot, Microsoft, Vulnerabilities /

Microsoft Expands Copilot Bug Bounty Program, Increases Payouts 2025-02-10 at 14:37 By Ionut Arghire Microsoft has added more Copilot consumer products to its bug bounty program and is offering higher rewards for medium-severity vulnerabilities. The post Microsoft Expands Copilot Bug Bounty Program, Increases Payouts appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Microsoft Expands Copilot Bug Bounty Program, Increases Payouts Read More »

Cisco Patches Critical Vulnerabilities in Enterprise Management Product

Cisco, Vulnerabilities /

Cisco Patches Critical Vulnerabilities in Enterprise Management Product 2025-02-06 at 13:26 By Ionut Arghire Critical vulnerabilities in Cisco Identity Services Engine could lead to elevation of privileges and  system configuration modifications. The post Cisco Patches Critical Vulnerabilities in Enterprise Management Product appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Cisco Patches Critical Vulnerabilities in Enterprise Management Product Read More »

Penetration Testing ROI: How to Convince Leadership to Invest in Cybersecurity

penetration testing, Vulnerabilities /

Penetration Testing ROI: How to Convince Leadership to Invest in Cybersecurity 2025-02-05 at 23:06 By While Chief Information Security Officers (CISOs) know how crucial a consistent enterprise penetration testing program is to their cybersecurity program, convincing their fellow leaders and board members to invest in pen testing amid other budget demands can be challenging. This

React to this headline:

Loading spinner

Penetration Testing ROI: How to Convince Leadership to Invest in Cybersecurity Read More »

Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities

Chrome, Firefox, patch, Vulnerabilities /

Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities 2025-02-05 at 13:49 By Ionut Arghire Chrome 133 and Firefox 135 were released with patches for multiple high-severity memory safety vulnerabilities. The post Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Chrome 133, Firefox 135 Patch High-Severity Vulnerabilities Read More »

CISA Issues Exploitation Warning for .NET Vulnerability

.NET, CISA KEV, exploited, Vulnerabilities /

CISA Issues Exploitation Warning for .NET Vulnerability 2025-02-05 at 13:06 By Eduard Kovacs CISA has added CVE-2024-29059, a flaw affecting Microsoft .NET, to its Known Exploited Vulnerabilities catalog. The post CISA Issues Exploitation Warning for .NET Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

CISA Issues Exploitation Warning for .NET Vulnerability Read More »

Zyxel Issues ‘No Patch’ Warning for Exploited Zero-Days

exploited, unpatched, Vulnerabilities, Zyxel /

Zyxel Issues ‘No Patch’ Warning for Exploited Zero-Days 2025-02-05 at 12:01 By Ionut Arghire Multiple Zyxel legacy DSL CPE products are affected by exploited zero-day vulnerabilities that will not be patched. The post Zyxel Issues ‘No Patch’ Warning for Exploited Zero-Days appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Zyxel Issues ‘No Patch’ Warning for Exploited Zero-Days Read More »

Exploitation of Over 700 Vulnerabilities Came to Light in 2024

exploited, Vulnerabilities, vulnerability /

Exploitation of Over 700 Vulnerabilities Came to Light in 2024 2025-02-04 at 19:34 By Ionut Arghire The number of vulnerabilities first reported as exploited surged last year amid a decrease in zero-day reports. The post Exploitation of Over 700 Vulnerabilities Came to Light in 2024 appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Exploitation of Over 700 Vulnerabilities Came to Light in 2024 Read More »

Scroll to Top