November 13, 2024

A critical vulnerability, identified as CVE-2024-10914, is being actively exploited in several models of end-of-life D-Link network-attached storage (NAS) devices.

November 13, 2024

An investigation into the security of the OvrC cloud platform has revealed ten vulnerabilities that, if exploited, could allow attackers to execute code remotely on devices connected to the platform.

November 12, 2024

Microsoft's November 2024 Patch Tuesday update includes a significant number of remote code execution (RCE) vulnerabilities, including a critical issue in Windows Kerberos.

November 12, 2024

Amazon has affirmed that its employees' data was leaked on a cybercrime forum.

November 12, 2024

Microsoft has recently brought to light a high-severity vulnerability in its Exchange Server that can enable attackers to impersonate legitimate senders in incoming emails, thereby increasing the efficacy of malicious messages.

November 12, 2024

The FBI, NSA, and the cybersecurity bodies of the Five Eyes intelligence alliance have collectively issued a list of the top 15 vulnerabilities that were frequently exploited in the past year.

November 12, 2024

Citrix has swiftly released patches for two vulnerabilities in its Citrix Virtual Apps and Desktop technology, which could allow a remote attacker to escalate privileges or execute code of their choice on vulnerable systems.

November 12, 2024

Cybersecurity researchers have identified a new ransomware family, Ymir, that was used in an attack just two days after systems were compromised by RustyStealer, a stealer malware.

November 11, 2024

Windows users are under threat from a newly malicious version of the Remcos remote admin tool.

November 10, 2024

In the wake of a significant breach by the China-connected Advanced Persistent Threat (APT) group known as Salt Typhoon, the U.S. Consumer Financial Protection Bureau (CFPB) has instructed its employees to limit the use of their cellphones for work-related matters.