vulnerability

McDonald’s AI Hiring Chatbot Exposes 64 Million Applicants’ Data via Default Credentials

Data Breach

McDonald’s AI Hiring Chatbot Exposes 64 Million Applicants’ Data via Default Credentials

McDonald’s AI-powered hiring chatbot, “Olivia,” developed by Paradox.ai, exposed the personal data of over 64 million job...

Critical Pre-Auth RCE Exploit Released for Fortinet FortiWeb: Patch Immediately

CVE News

Critical Pre-Auth RCE Exploit Released for Fortinet FortiWeb: Patch Immediately

Proof-of-concept (PoC) exploits for a critical SQL injection (SQLi) vulnerability in Fortinet FortiWeb have been publicly released,...

Gravity Forms Compromised in Supply-Chain Attack: Backdoored Plugins Distributed via Official Website

CVE News

Gravity Forms Compromised in Supply-Chain Attack: Backdoored Plugins Distributed via Official Website

The developers of Gravity Forms, a widely used WordPress plugin with over 1 million active installations, have...

NVIDIA’s GDDR6 Rowhammer Mitigation Guidance: Technical Analysis and Industry Implications

Red-Team

NVIDIA’s GDDR6 Rowhammer Mitigation Guidance: Technical Analysis and Industry Implications

NVIDIA has issued guidance urging users to enable System Level Error-Correcting Code (ECC) protections for GDDR6-equipped GPUs...

OpenVSX Zero-Day Vulnerability: How a Single Flaw Threatened Millions of Developer Environments

CVE News

OpenVSX Zero-Day Vulnerability: How a Single Flaw Threatened Millions of Developer Environments

A critical vulnerability in OpenVSX, the open-source extension marketplace used by popular VS Code forks like Cursor...

Windows 11’s Shift to JScript9Legacy: Security Gains and Compatibility Trade-offs

News

Windows 11’s Shift to JScript9Legacy: Security Gains and Compatibility Trade-offs

Microsoft has replaced the legacy JScript engine with JScript9Legacy in Windows 11 version 24H2 and later, marking...

PerfektBlue Bluetooth Vulnerabilities Expose Critical Automotive Systems to Remote Attacks

CVE News

PerfektBlue Bluetooth Vulnerabilities Expose Critical Automotive Systems to Remote Attacks

Four vulnerabilities in OpenSynergy’s BlueSDK Bluetooth stack, collectively dubbed PerfektBlue, have been identified as affecting vehicles from...

Windows 11 KB5062553 & KB5062552 Updates: Security Fixes and Enterprise Impact

CVE News

Windows 11 KB5062553 & KB5062552 Updates: Security Fixes and Enterprise Impact

Microsoft has released two critical cumulative updates for Windows 11 – KB5062553 for version 24H2 and KB5062552...

Microsoft’s July 2025 Patch Tuesday Addresses 137 Vulnerabilities Including Critical WebDAV Zero-Day

CVE News

Microsoft’s July 2025 Patch Tuesday Addresses 137 Vulnerabilities Including Critical WebDAV Zero-Day

Microsoft’s July 2025 Patch Tuesday has released security updates addressing 137 vulnerabilities across its product line, including...

Microsoft SharePoint Online Access Issues: Technical Analysis and Mitigation Strategies

Blue-Team

Microsoft SharePoint Online Access Issues: Technical Analysis and Mitigation Strategies

Microsoft is currently investigating intermittent access issues affecting SharePoint Online, as confirmed by the company’s status updates1....

Brother Printer Vulnerability: Unpatchable Default Admin Password Flaw Affects 689 Models

CVE News

Brother Printer Vulnerability: Unpatchable Default Admin Password Flaw Affects 689 Models

A critical vulnerability affecting 689 Brother printer models, along with devices from Fujifilm, Toshiba, and Konica Minolta,...

Cisco ISE and ISE-PIC Vulnerabilities: Critical RCE Flaws Require Immediate Patching

CVE News

Cisco ISE and ISE-PIC Vulnerabilities: Critical RCE Flaws Require Immediate Patching

Cisco has issued an urgent security advisory regarding two critical remote code execution (RCE) vulnerabilities affecting its...

Windows 10 KB5061087 Update: Critical Fixes for Start Menu and Printer Issues

News

Windows 10 KB5061087 Update: Critical Fixes for Start Menu and Printer Issues

Microsoft has released the June 2025 non-security preview update for Windows 10 version 22H2, addressing critical system...

U.S. House Bans WhatsApp on Government Devices: Security Implications and Alternatives

Blue-Team

U.S. House Bans WhatsApp on Government Devices: Security Implications and Alternatives

The U.S. House of Representatives has prohibited the use of WhatsApp on government-issued devices, citing unresolved security...

Critical Privilege Escalation Vulnerability in WordPress Motors Theme Actively Exploited

CVE News

Critical Privilege Escalation Vulnerability in WordPress Motors Theme Actively Exploited

A critical privilege escalation vulnerability (CVE-2025-4322) in the WordPress Motors theme is being actively exploited in the...

Microsoft’s Legacy Driver Removal from Windows Update: Security Implications and Mitigations

Blue-Team

Microsoft’s Legacy Driver Removal from Windows Update: Security Implications and Mitigations

Microsoft has announced a phased removal of legacy drivers from the Windows Update catalog, a move aimed...

Godfather Android Malware Evolves: Virtualization Tactics Hijack Banking Apps

Malware Analysis

Godfather Android Malware Evolves: Virtualization Tactics Hijack Banking Apps

The latest iteration of the Godfather Android banking trojan has adopted a sophisticated virtualization technique to bypass...

Microsoft 365 to Block Legacy Authentication Protocols by Default: Security Implications and Mitigation

Blue-Team

Microsoft 365 to Block Legacy Authentication Protocols by Default: Security Implications and Mitigation

Microsoft has announced a significant security update for Microsoft 365 tenants, set to roll out between mid-July...

CISA Warns of Actively Exploited Linux Kernel Vulnerability (CVE-2024-1086)

CVE News

CISA Warns of Actively Exploited Linux Kernel Vulnerability (CVE-2024-1086)

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about attackers exploiting a high-severity vulnerability...

BeyondTrust Remote Support Vulnerability (CVE-2025-5309): Pre-Auth RCE Analysis

CVE News

BeyondTrust Remote Support Vulnerability (CVE-2025-5309): Pre-Auth RCE Analysis

BeyondTrust has issued critical security updates to address a high-severity Server-Side Template Injection (SSTI) vulnerability in its...

Posts pagination

Previous 1 2 3 4 5 … 20 Next

vulnerability

McDonald’s AI Hiring Chatbot Exposes 64 Million Applicants’ Data via Default Credentials

Critical Pre-Auth RCE Exploit Released for Fortinet FortiWeb: Patch Immediately

Gravity Forms Compromised in Supply-Chain Attack: Backdoored Plugins Distributed via Official Website

NVIDIA’s GDDR6 Rowhammer Mitigation Guidance: Technical Analysis and Industry Implications

OpenVSX Zero-Day Vulnerability: How a Single Flaw Threatened Millions of Developer Environments

Windows 11’s Shift to JScript9Legacy: Security Gains and Compatibility Trade-offs

PerfektBlue Bluetooth Vulnerabilities Expose Critical Automotive Systems to Remote Attacks

Windows 11 KB5062553 & KB5062552 Updates: Security Fixes and Enterprise Impact

Microsoft’s July 2025 Patch Tuesday Addresses 137 Vulnerabilities Including Critical WebDAV Zero-Day

Microsoft SharePoint Online Access Issues: Technical Analysis and Mitigation Strategies

Brother Printer Vulnerability: Unpatchable Default Admin Password Flaw Affects 689 Models

Cisco ISE and ISE-PIC Vulnerabilities: Critical RCE Flaws Require Immediate Patching

Windows 10 KB5061087 Update: Critical Fixes for Start Menu and Printer Issues

U.S. House Bans WhatsApp on Government Devices: Security Implications and Alternatives

Critical Privilege Escalation Vulnerability in WordPress Motors Theme Actively Exploited

Microsoft’s Legacy Driver Removal from Windows Update: Security Implications and Mitigations

Godfather Android Malware Evolves: Virtualization Tactics Hijack Banking Apps

Microsoft 365 to Block Legacy Authentication Protocols by Default: Security Implications and Mitigation

CISA Warns of Actively Exploited Linux Kernel Vulnerability (CVE-2024-1086)

BeyondTrust Remote Support Vulnerability (CVE-2025-5309): Pre-Auth RCE Analysis

You may have missed

U.S. Sanctions Grinex Crypto-Exchange as Garantex Successor in Crackdown on Ransomware Money Laundering

Meta’s Erroneous Instagram Account Bans: Technical Implications for Security Teams

Supreme Court’s Decision on Mississippi Social Media Age Verification Law: Technical and Legal Implications

Microsoft Resolves Critical Windows Server Cluster and VM Stability Issues