Blog

A high-severity remote code execution vulnerability in a mobile device management platform has been added to the federal list of […]

Official security updates have been released to address a critical root-level vulnerability in the perimeter security infrastructure of several thousand

A highly targeted supply chain campaign has been identified that compromises the software build process by poisoning third-party Actions within

A critical authentication bypass vulnerability in Linux-based web hosting control panels is being mass-exploited to deploy a new strain of

The parent company of a global learning management system has confirmed reaching a settlement with threat actors to avoid the

Enterprise security teams are entering the final 24 hours of a critical unpatched exposure period for perimeter firewalls. Official software

Cybersecurity researchers have identified a sophisticated zero-day exploit that appears to have been developed with the assistance of an advanced

A malicious repository masquerading as a legitimate privacy tool from a leading AI laboratory trended on Hugging Face, leading to

A critical heap out-of-bounds read vulnerability has been disclosed in a popular open-source framework used for running large language models

A critical improper input validation vulnerability in the Ivanti Endpoint Manager Mobile platform has been added to the federal list