Vulnerability Management

Over 46,000 Unpatched Grafana Instances Vulnerable to Account Takeover via Open Redirect Flaw

CVE News

Over 46,000 Unpatched Grafana Instances Vulnerable to Account Takeover via Open Redirect Flaw

More than 46,000 internet-facing Grafana instances remain unpatched against a high-severity vulnerability (CVE-2025-4123) that chains an open...

WestJet Investigates Cyberattack Disrupting Internal Systems: Technical Analysis and Industry Context

APT-News

WestJet Investigates Cyberattack Disrupting Internal Systems: Technical Analysis and Industry Context

WestJet, Canada’s second-largest airline, is investigating a cyberattack that has disrupted access to internal systems, according to...

GitLab Patches Critical Account Takeover and Pipeline Hijacking Vulnerabilities

CVE News

GitLab Patches Critical Account Takeover and Pipeline Hijacking Vulnerabilities

GitLab has released security updates addressing multiple high-severity vulnerabilities in its DevSecOps platform, including flaws that could...

Microsoft Releases Revised Windows 11 24H2 Update for Incompatible PCs

CVE News

Microsoft Releases Revised Windows 11 24H2 Update for Incompatible PCs

Microsoft has confirmed the release of a revised security update for Windows 11 24H2, specifically targeting systems...

Microsoft Resolves Windows Server Authentication Failures After April 2025 Updates

CVE News

Microsoft Resolves Windows Server Authentication Failures After April 2025 Updates

Microsoft has addressed critical authentication failures affecting Windows Server domain controllers following the April 2025 security updates....

New Secure Boot Bypass (CVE-2025-3052) Enables Bootkit Malware Installation

CVE News

New Secure Boot Bypass (CVE-2025-3052) Enables Bootkit Malware Installation

A newly disclosed Secure Boot vulnerability, tracked as CVE-2025-3052, allows attackers to disable security protections on PCs...

Windows 11 KB5060842 and KB5060999 Updates: Security Fixes and Enterprise Implications

News

Windows 11 KB5060842 and KB5060999 Updates: Security Fixes and Enterprise Implications

Microsoft has released cumulative updates KB5060842 and KB5060999 for Windows 11 versions 24H2 and 23H2, addressing 66...

ChatGPT Global Outage: Technical Analysis and Mitigation Insights

News

ChatGPT Global Outage: Technical Analysis and Mitigation Insights

OpenAI confirmed a widespread outage affecting ChatGPT users globally on June 10, 2025, with services disrupted for...

Google Patches Critical Vulnerability Exposing Account Recovery Phone Numbers

CVE News

Google Patches Critical Vulnerability Exposing Account Recovery Phone Numbers

Google has addressed a high-severity vulnerability that allowed attackers to brute-force recovery phone numbers tied to user...

Sensata Technologies Ransomware Attack: Data Breach Impact and Response

Data Breach

Sensata Technologies Ransomware Attack: Data Breach Impact and Response

Sensata Technologies, a global industrial sensor manufacturer, confirmed a ransomware attack in April 2025 that compromised sensitive...

Cisco Patches Critical ISE and CCP Vulnerabilities with Public Exploits

CVE News

Cisco Patches Critical ISE and CCP Vulnerabilities with Public Exploits

Cisco has issued patches for three high-severity vulnerabilities affecting its Identity Services Engine (ISE) and Customer Collaboration...

Windows 11 Quick Machine Recovery: Automated Boot Failure Remediation

News

Windows 11 Quick Machine Recovery: Automated Boot Failure Remediation

Microsoft has introduced a new feature in Windows 11 called Quick Machine Recovery (QMR), designed to automatically...

Mozilla’s New Defense Against Cryptocurrency-Draining Firefox Extensions

News

Mozilla’s New Defense Against Cryptocurrency-Draining Firefox Extensions

Mozilla has introduced a new security mechanism designed to detect and block malicious Firefox extensions that target...

Google Chrome to Remove Trust in Chunghwa Telecom and NetLock Certificates: Technical Impact and Mitigation

News

Google Chrome to Remove Trust in Chunghwa Telecom and NetLock Certificates: Technical Impact and Mitigation

Starting August 1, 2025, Google Chrome will no longer trust TLS certificates issued by Chunghwa Telecom (Taiwan)...

Qualcomm Patches Actively Exploited Adreno GPU Zero-Day Vulnerabilities

CVE News

Qualcomm Patches Actively Exploited Adreno GPU Zero-Day Vulnerabilities

Qualcomm has addressed three critical zero-day vulnerabilities in its Adreno Graphics Processing Unit (GPU) driver that were...

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

APT-News

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

ConnectWise, a leading IT management software provider, confirmed a cyberattack targeting its ScreenConnect remote access tool in...

Apple Safari Fullscreen BitM Attack: Exploitation and Mitigation

CVE News

Apple Safari Fullscreen BitM Attack: Exploitation and Mitigation

A newly identified weakness in Apple’s Safari browser enables attackers to execute fullscreen browser-in-the-middle (BitM) attacks, potentially...

Emergency Update Resolves Hyper-V VM Freezes on Windows Server 2022

News

Emergency Update Resolves Hyper-V VM Freezes on Windows Server 2022

Microsoft has released an out-of-band (OOB) update to address a critical issue causing Hyper-V virtual machines (VMs)...

Malicious NPM Packages Exfiltrate Host and Network Data via Discord Webhooks

Threat Intelligence

Malicious NPM Packages Exfiltrate Host and Network Data via Discord Webhooks

Security researchers have identified 60 malicious packages in the NPM registry that collect sensitive host and network...

FTC Mandates GoDaddy Security Overhaul Following Systemic Data Breaches

Cyber Laws & Regulations

FTC Mandates GoDaddy Security Overhaul Following Systemic Data Breaches

The Federal Trade Commission (FTC) has finalized a settlement requiring GoDaddy to implement sweeping security reforms after...

Posts pagination

1 2 3 4 … 12 Next

Vulnerability Management

Over 46,000 Unpatched Grafana Instances Vulnerable to Account Takeover via Open Redirect Flaw

WestJet Investigates Cyberattack Disrupting Internal Systems: Technical Analysis and Industry Context

GitLab Patches Critical Account Takeover and Pipeline Hijacking Vulnerabilities

Microsoft Releases Revised Windows 11 24H2 Update for Incompatible PCs

Microsoft Resolves Windows Server Authentication Failures After April 2025 Updates

New Secure Boot Bypass (CVE-2025-3052) Enables Bootkit Malware Installation

Windows 11 KB5060842 and KB5060999 Updates: Security Fixes and Enterprise Implications

ChatGPT Global Outage: Technical Analysis and Mitigation Insights

Google Patches Critical Vulnerability Exposing Account Recovery Phone Numbers

Sensata Technologies Ransomware Attack: Data Breach Impact and Response

Cisco Patches Critical ISE and CCP Vulnerabilities with Public Exploits

Windows 11 Quick Machine Recovery: Automated Boot Failure Remediation

Mozilla’s New Defense Against Cryptocurrency-Draining Firefox Extensions

Google Chrome to Remove Trust in Chunghwa Telecom and NetLock Certificates: Technical Impact and Mitigation

Qualcomm Patches Actively Exploited Adreno GPU Zero-Day Vulnerabilities

ConnectWise ScreenConnect Breach: Nation-State Attack Analysis and Mitigation

Apple Safari Fullscreen BitM Attack: Exploitation and Mitigation

Malicious NPM Packages Exfiltrate Host and Network Data via Discord Webhooks

FTC Mandates GoDaddy Security Overhaul Following Systemic Data Breaches

You may have missed

Over 46,000 Unpatched Grafana Instances Vulnerable to Account Takeover via Open Redirect Flaw

Anubis Ransomware Now Includes File-Wiping Module, Rendering Recovery Impossible

WestJet Investigates Cyberattack Disrupting Internal Systems: Technical Analysis and Industry Context

Meta AI’s Public Search Leak: Privacy Risks and Technical Implications