Code Defence

A critical improper input validation vulnerability in a widely used mobile device management platform is under active, targeted exploitation. This […]

A dozen critical security vulnerabilities have been disclosed in a popular Node.js library used for executing untrusted code in a

A critical buffer overflow vulnerability in the User-ID Authentication Portal of PAN-OS is being actively exploited by a likely state-sponsored

The latest stable release of Google Chrome addresses a massive volume of security defects, including multiple critical-severity flaws that allow

The Iranian state-sponsored threat actor known as MuddyWater is utilizing social engineering via corporate collaboration platforms to initiate espionage operations

A critical zero-click vulnerability in the Android operating system allows unauthenticated remote attackers in close proximity or on the same

Official installers for a widely used disk imaging software have been found to contain malicious code injected by sophisticated threat

A large-scale credential theft operation has been identified targeting tens of thousands of users across global organizations. This campaign is

A critical security vulnerability in the Weaver ❨Fanwei❩ E-cology collaboration platform is currently being exploited in the wild. This enterprise-grade

A critical vulnerability in the Linux Kernel involving incorrect resource transfer between spheres has been added to the federal list