Cisco warned this week that two vulnerabilities, which have been exploited in zero-day attacks, are now being abused to force ...

This critical (CVSS 10.0) use-after-free (UAF) vulnerability in Lua scripting could allow authenticated attackers to execute ...

Over 60% of vulnerabilities discovered in network and security appliances in 2023 were exploited as zero days, according to a new Rapid7 report. This follows a broader trend of attackers being adept ...

An update against the Cisco IOS XE vulnerability CVE-2023-20198 has been available since 2023. The Shadowserver Foundation ...

Thousands of networks—many of them operated by the US government and Fortune 500 companies—face an “imminent threat” of being breached by a nation-state hacking group following the breach of a major ...

Software supply chain security firm JFrog has disclosed the details of a critical vulnerability affecting a popular React ...

A vulnerability in the open source deep learning tool Keras could allow attackers to load arbitrary local files or conduct SSRF attacks.

As we navigate the digital age, it’s alarming to note that nearly half of network connections originate from high-risk Internet of Things (IoT) and Information Technology (IT) devices. This presents a ...

Microsoft released emergency updates on Friday morning for a WSUS security vulnerability. It is now being attacked on the internet.

Israeli cybersecurity startup Seal Cybersecurity Solutions Inc. today revealed that it has raised $13 million in new funding to accelerate its go-to-market efforts and expand its core vulnerability ...

Security researchers at software supply chain company JFrog Ltd. today revealed details of a critical vulnerability in React, ...