vulnerability

Cyber Threats to Satellite Systems: Attack Vectors and Defensive Strategies

Threat Intelligence

Cyber Threats to Satellite Systems: Attack Vectors and Defensive Strategies

Satellite systems are increasingly becoming targets of sophisticated cyberattacks, with nation-states and cybercriminal groups exploiting vulnerabilities in...

CISA Flags Actively Exploited Vulnerabilities in Broadcom, Commvault, and Qualitia Products

CVE News

CISA Flags Actively Exploited Vulnerabilities in Broadcom, Commvault, and Qualitia Products

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three critical vulnerabilities to its Known Exploited...

How Rapid7’s Remediation Hub Reduces MTTR in Exposure Command

Blue-Team

How Rapid7’s Remediation Hub Reduces MTTR in Exposure Command

Rapid7’s newly launched Remediation Hub, part of its Exposure Command platform, aims to transform how security teams...

Unified Vulnerability Remediation: Bridging Exposure Management and AI-Driven Security

Blue-Team

Unified Vulnerability Remediation: Bridging Exposure Management and AI-Driven Security

Modern security teams face an overwhelming challenge: managing vulnerabilities across complex environments while balancing risk, compliance, and...

Critical SAP NetWeaver Vulnerability (CVE-2025-31324): Exploitation and Mitigation

CVE News

Critical SAP NetWeaver Vulnerability (CVE-2025-31324): Exploitation and Mitigation

Over 1,200 internet-exposed SAP NetWeaver instances are vulnerable to an actively exploited maximum severity unauthenticated file upload...

ISC Stormcast: SAP NetWeaver Exploits and Steganographic Malware Trends

Threat Intelligence

ISC Stormcast: SAP NetWeaver Exploits and Steganographic Malware Trends

The SANS Internet Storm Center (ISC) Stormcast for April 29, 2025, highlights critical cybersecurity threats, including active...

The Evolution of Bug Hunting: How AI is Reshaping Vulnerability Discovery

Bug Bounties & Responsible Disclosure

The Evolution of Bug Hunting: How AI is Reshaping Vulnerability Discovery

Bug hunting has transformed from a niche activity into a professionalized field where security researchers earn substantial...

SberTech Expands Bug Bounty Program on BI.ZONE Platform, Increases Rewards to 200K RUB

Bug Bounties & Responsible Disclosure

SberTech Expands Bug Bounty Program on BI.ZONE Platform, Increases Rewards to 200K RUB

SberTech, a Russian software developer under the Sber ecosystem, has expanded its public bug bounty program on...

19 APT Groups Exploit Vulnerabilities and Spear Phishing in Asia-Based Attacks

APT-News

19 APT Groups Exploit Vulnerabilities and Spear Phishing in Asia-Based Attacks

Recent research by NSFOCUS Fuying Laboratory has uncovered 19 distinct Advanced Persistent Threat (APT) campaigns targeting organizations...

Analysis of Multi-Stage Carding Attack Targeting Outdated Magento Sites

Blue-Team

Analysis of Multi-Stage Carding Attack Targeting Outdated Magento Sites

A sophisticated multi-stage carding attack has been identified targeting Magento eCommerce sites running outdated versions, particularly Magento...

Rapid7’s Exposure Assessment Platform Buyer’s Guide: Key Features and Vendor Comparisons

News

Rapid7’s Exposure Assessment Platform Buyer’s Guide: Key Features and Vendor Comparisons

Rapid7 has released its Exposure Assessment Platform (EAP) Buyer’s Guide, a resource designed to help organizations navigate...

GFI MailEssentials .NET Deserialization Vulnerability (CVE-2025-34491) Allows Remote Code Execution

CVE News

GFI MailEssentials .NET Deserialization Vulnerability (CVE-2025-34491) Allows Remote Code Execution

A critical vulnerability (CVE-2025-34491) in GFI MailEssentials enables authenticated attackers to execute arbitrary code through .NET deserialization...

Critical Server-Side Template Injection Vulnerability in IPW Systems Metazo (CVE-2025-46661)

CVE News

Critical Server-Side Template Injection Vulnerability in IPW Systems Metazo (CVE-2025-46661)

A critical vulnerability (CVE-2025-46661) has been identified in IPW Systems Metazo versions up to 8.1.3, allowing unauthenticated...

Tenda W12 and i24 HTTPd Stack-Based Buffer Overflow Vulnerability (CVE-2025-4007): Technical Analysis and Mitigation

CVE News

Tenda W12 and i24 HTTPd Stack-Based Buffer Overflow Vulnerability (CVE-2025-4007): Technical Analysis and Mitigation

A critical stack-based buffer overflow vulnerability (CVE-2025-4007) has been identified in Tenda W12 and i24 routers, affecting...

CVE-2015-2079: Critical Remote Code Execution Vulnerability in Usermin

CVE News

CVE-2015-2079: Critical Remote Code Execution Vulnerability in Usermin

A critical vulnerability (CVE-2015-2079) in Usermin, a web-based administration tool, allows authenticated attackers to execute arbitrary code...

Global Surge in Automated Scanning Activity: Threat Landscape Analysis

Threat Intelligence

Global Surge in Automated Scanning Activity: Threat Landscape Analysis

The cybersecurity landscape continues to evolve with increasing automation, as evidenced by a 16.7% year-over-year rise in...

CISA Expands Known Exploited Vulnerabilities Catalog with Three Critical Flaws

CVE News

CISA Expands Known Exploited Vulnerabilities Catalog with Three Critical Flaws

The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) Catalog with three...

Analysis of iOS Darwin Notification Vulnerability: Impact and Mitigation

CVE News

Analysis of iOS Darwin Notification Vulnerability: Impact and Mitigation

A newly disclosed vulnerability in Apple’s iOS operating system (CVE-2025-24091) allows malicious applications to trigger an irreversible...

ISC Stormcast April 28, 2025: Key Cybersecurity Threats and Tools

Threat Intelligence

ISC Stormcast April 28, 2025: Key Cybersecurity Threats and Tools

The latest episode of the SANS Internet Storm Center (ISC) Stormcast, released on April 28, 2025, covers...

IXON VPN Client Vulnerabilities: Technical Analysis of Privilege Escalation Flaws

CVE News

IXON VPN Client Vulnerabilities: Technical Analysis of Privilege Escalation Flaws

Security researchers at Shelltrail have identified three critical vulnerabilities in the IXON VPN client that could allow...

Posts pagination

Previous 1 … 4 5 6 7 8 9 10 … 20 Next

vulnerability

Cyber Threats to Satellite Systems: Attack Vectors and Defensive Strategies

CISA Flags Actively Exploited Vulnerabilities in Broadcom, Commvault, and Qualitia Products

How Rapid7’s Remediation Hub Reduces MTTR in Exposure Command

Critical SAP NetWeaver Vulnerability (CVE-2025-31324): Exploitation and Mitigation

ISC Stormcast: SAP NetWeaver Exploits and Steganographic Malware Trends

The Evolution of Bug Hunting: How AI is Reshaping Vulnerability Discovery

SberTech Expands Bug Bounty Program on BI.ZONE Platform, Increases Rewards to 200K RUB

19 APT Groups Exploit Vulnerabilities and Spear Phishing in Asia-Based Attacks

Analysis of Multi-Stage Carding Attack Targeting Outdated Magento Sites

Rapid7’s Exposure Assessment Platform Buyer’s Guide: Key Features and Vendor Comparisons

GFI MailEssentials .NET Deserialization Vulnerability (CVE-2025-34491) Allows Remote Code Execution

Critical Server-Side Template Injection Vulnerability in IPW Systems Metazo (CVE-2025-46661)

Tenda W12 and i24 HTTPd Stack-Based Buffer Overflow Vulnerability (CVE-2025-4007): Technical Analysis and Mitigation

CVE-2015-2079: Critical Remote Code Execution Vulnerability in Usermin

Global Surge in Automated Scanning Activity: Threat Landscape Analysis

CISA Expands Known Exploited Vulnerabilities Catalog with Three Critical Flaws

Analysis of iOS Darwin Notification Vulnerability: Impact and Mitigation

ISC Stormcast April 28, 2025: Key Cybersecurity Threats and Tools

IXON VPN Client Vulnerabilities: Technical Analysis of Privilege Escalation Flaws

You may have missed

U.S. Sanctions Grinex Crypto-Exchange as Garantex Successor in Crackdown on Ransomware Money Laundering

Meta’s Erroneous Instagram Account Bans: Technical Implications for Security Teams

Supreme Court’s Decision on Mississippi Social Media Age Verification Law: Technical and Legal Implications

Microsoft Resolves Critical Windows Server Cluster and VM Stability Issues