vulnerability

Apple Extends Zero-Day Patch to Legacy iOS and iPadOS Devices

CVE News

Apple Extends Zero-Day Patch to Legacy iOS and iPadOS Devices

Apple has released security updates for older iPhone and iPad models, backporting a critical fix for a...

Securing the Browser: The New Enterprise Perimeter and Attack Surface

Blue-Team

Securing the Browser: The New Enterprise Perimeter and Attack Surface

The modern web browser has become the primary interface for enterprise work, hosting sensitive data, credentials, and...

Beyond the NVD Backlog: The Shift to Real-Time Vulnerability Intelligence

Blue-Team

Beyond the NVD Backlog: The Shift to Real-Time Vulnerability Intelligence

The cybersecurity industry is confronting a fundamental shift in how vulnerabilities are managed. The traditional model, centered...

Samsung Patches Actively Exploited Android Zero-Day Linked to WhatsApp Spyware Campaign

CVE News

Samsung Patches Actively Exploited Android Zero-Day Linked to WhatsApp Spyware Campaign

Samsung has released a critical security update addressing a remote code execution vulnerability that was actively exploited...

Microsoft Exchange Online Outage: Analysis of North American Service Disruption and Historical Context

Blue-Team

Microsoft Exchange Online Outage: Analysis of North American Service Disruption and Historical Context

Microsoft is currently addressing a significant service disruption affecting its Exchange Online email platform for customers across...

Akira Ransomware Campaign Exploits SonicWall CVE-2024-40766 and Misconfigurations

CVE News

Akira Ransomware Campaign Exploits SonicWall CVE-2024-40766 and Misconfigurations

A significant surge in Akira ransomware activity, first observed in late July 2025, has been attributed to...

The Buyer’s Guide to Browser Extension Management: Mitigating a Pervasive Enterprise Risk

Blue-Team

The Buyer’s Guide to Browser Extension Management: Mitigating a Pervasive Enterprise Risk

Browser extensions are indispensable for modern workflows, boosting productivity by customizing the browsing experience. However, this convenience...

Microsoft Removes Barrier to Entry for Windows App Developers by Waiving Store Fees

News

Microsoft Removes Barrier to Entry for Windows App Developers by Waiving Store Fees

Microsoft has officially eliminated the one-time registration fee for individual developers seeking to publish applications on the...

Microsoft September 2025 Patch Tuesday: Analysis of 81 Flaws and Two Zero-Days

Blue-Team

Microsoft September 2025 Patch Tuesday: Analysis of 81 Flaws and Two Zero-Days

Microsoft’s September 2025 Patch Tuesday has been released, addressing a total of 81 security vulnerabilities across its...

Managing Cyber Risk Through External Attack Surface Management

Blue-Team

Managing Cyber Risk Through External Attack Surface Management

The rapid expansion of digital infrastructure has created a significant challenge for security teams: maintaining visibility over...

Microsoft Defender Anti-Spam Service Bug Disrupts Exchange Online and Teams URLs

Blue-Team

Microsoft Defender Anti-Spam Service Bug Disrupts Exchange Online and Teams URLs

Microsoft is currently addressing a significant service issue where its anti-spam filtering technology within Defender for Office...

SAP NetWeaver Under Siege: Critical Vulnerabilities Exploited for RCE and Data Theft

CVE News

SAP NetWeaver Under Siege: Critical Vulnerabilities Exploited for RCE and Data Theft

SAP has released patches for 21 new security flaws, including three critical vulnerabilities in its widely used...

Meta Faces Lawsuit Over Alleged WhatsApp Security Failures and FTC Violations

Cyber Laws & Regulations

Meta Faces Lawsuit Over Alleged WhatsApp Security Failures and FTC Violations

A former head of security for WhatsApp has filed a lawsuit against Meta, accusing the social media...

Czech Cyber Agency Issues High-Risk Warning on Chinese Technology and Data Transfers

APT-News

Czech Cyber Agency Issues High-Risk Warning on Chinese Technology and Data Transfers

The National Cyber and Information Security Agency of the Czech Republic (NÚKIB) has formally instructed organizations within...

Sitecore Zero-Day Exploitation: Anatomy of a Critical ViewState Deserialization Attack

CVE News

Sitecore Zero-Day Exploitation: Anatomy of a Critical ViewState Deserialization Attack

A critical zero-day vulnerability in legacy Sitecore deployments, designated CVE-2025-53690, has been actively exploited by threat actors...

TP-Link Router Zero-Day and Active Exploitation Campaigns Prompt Urgent CISA Response

CVE News

TP-Link Router Zero-Day and Active Exploitation Campaigns Prompt Urgent CISA Response

TP-Link has confirmed the existence of an unpatched zero-day vulnerability impacting multiple router models, as the U.S....

France’s CNIL Issues €325M Fine to Google for Gmail Ad and Cookie Violations

Cyber Laws & Regulations

France’s CNIL Issues €325M Fine to Google for Gmail Ad and Cookie Violations

France’s data protection authority, the Commission Nationale de l’Informatique et des Libertés (CNIL), has imposed a substantial...

Windows Update Issues: UAC Prompts, System Recovery Failures, and Contested SSD Impacts

Blue-Team

Windows Update Issues: UAC Prompts, System Recovery Failures, and Contested SSD Impacts

Microsoft has confirmed that recent security updates, specifically the August 2025 patches, are causing significant system disruptions...

Apitor Technology Settlement Highlights Persistent COPPA Violations and Evolving IoT Risks

Cyber Laws & Regulations

Apitor Technology Settlement Highlights Persistent COPPA Violations and Evolving IoT Risks

The U.S. Department of Justice, on behalf of the Federal Trade Commission (FTC), has filed a lawsuit...

Geolocation as a Cyber Weapon: The Invisible Attack Vector Reshaping Modern Threats

Threat Intelligence

Geolocation as a Cyber Weapon: The Invisible Attack Vector Reshaping Modern Threats

The weaponization of geolocation data represents one of the most significant shifts in offensive cyber operations, transforming...

Posts pagination

Previous 1 2 3 4 5 6 … 24 Next

vulnerability

Apple Extends Zero-Day Patch to Legacy iOS and iPadOS Devices

Securing the Browser: The New Enterprise Perimeter and Attack Surface

Beyond the NVD Backlog: The Shift to Real-Time Vulnerability Intelligence

Samsung Patches Actively Exploited Android Zero-Day Linked to WhatsApp Spyware Campaign

Akira Ransomware Campaign Exploits SonicWall CVE-2024-40766 and Misconfigurations

The Buyer’s Guide to Browser Extension Management: Mitigating a Pervasive Enterprise Risk

Microsoft September 2025 Patch Tuesday: Analysis of 81 Flaws and Two Zero-Days

SAP NetWeaver Under Siege: Critical Vulnerabilities Exploited for RCE and Data Theft

Meta Faces Lawsuit Over Alleged WhatsApp Security Failures and FTC Violations

Czech Cyber Agency Issues High-Risk Warning on Chinese Technology and Data Transfers

Sitecore Zero-Day Exploitation: Anatomy of a Critical ViewState Deserialization Attack

TP-Link Router Zero-Day and Active Exploitation Campaigns Prompt Urgent CISA Response

Windows Update Issues: UAC Prompts, System Recovery Failures, and Contested SSD Impacts

Geolocation as a Cyber Weapon: The Invisible Attack Vector Reshaping Modern Threats

You may have missed

Dark Web Data Exposure: Technical Analysis and Response for Security Professionals

Misinformation as a Threat Vector: Lessons from the Brown University Shooting Investigation

Google’s Gmail Address Change: A New Vector for Account Takeover and Social Engineering

The AI Investment Surge in India: A Strategic Analysis for Security Leaders