July 1, 2024

Cisco Systems has rectified a zero-day vulnerability in its NX-OS software that was exploited by threat actors in attacks that took place in April.

July 1, 2024

A new unauthenticated remote code execution (RCE) vulnerability in OpenSSH, known as 'regreSSHion', has been identified, which can provide root privileges on glibc-based Linux systems.

June 30, 2024

Juniper Networks, a major provider of networking solutions, has urgently rolled out an update to remediate a high severity vulnerability that could allow authentication bypass in its Session Smart Router (SSR), Session Smart Conductor, and WAN Assurance Router products.

June 30, 2024

Fake IT support websites are distributing harmful PowerShell scripts disguised as solutions to common Windows errors, such as the 0x80070643 error, to infect devices with malware that steals information.

June 29, 2024

Hackers have found a way to exploit a critical vulnerability in all D-Link DIR-859 WiFi routers to gather account information, including passwords.

June 28, 2024

Zscaler ThreatLabz, in March 2024, observed the North Korea-linked threat group Kimsuky using a new malicious Google Chrome extension, TRANSLATEXT, to steal sensitive information.

June 28, 2024

Security experts have uncovered more details about the cryptocurrency mining activities of the 8220 Gang, who are exploiting known vulnerabilities in the Oracle WebLogic Server.

June 27, 2024

Cybersecurity researchers have uncovered a significant security vulnerability in the Vanna.AI library.

June 27, 2024

Cado Security researchers have issued a warning regarding the P2Pinfect worm, which has been seen attacking Redis servers with the aim of deploying ransomware and cryptocurrency mining payloads.

June 26, 2024

The Fortra FileCatalyst Workflow, a web-based platform for file exchange and sharing, is vulnerable to an SQL injection flaw that could allow remote unauthenticated attackers to create rogue admin users and manipulate the application database.