August 8, 2024

Cisco has issued an alert about several critical remote code execution vulnerabilities in the web-based management interface of its now-discontinued Small Business SPA 300 and SPA 500 series IP phones.

August 8, 2024

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has issued a warning about two vulnerabilities that are currently being exploited, one of which impacts Apache OFBiz.

August 8, 2024

Cisco updated its advisory to alert users about a critical vulnerability, CVE-2024-20419, which impacts Cisco Smart Software Manager On-Prem (Cisco SSM On-Prem) license servers and its predecessor, Cisco Smart Software Manager Satellite (SSM Satellite).

August 7, 2024

At Black Hat 2024, SafeBreach security researcher Alon Leviev disclosed two zero-day vulnerabilities that could be exploited to 'unpatch' fully updated Windows 10, 11, and Windows Server systems.

August 6, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a specific vulnerability in Microsoft COM for Windows to its Known Exploited Vulnerabilities (KEV) catalog.

August 6, 2024

A serious security flaw has been detected in Rockwell Automation's ControlLogix 1756 programmable logic controllers (PLCs).

August 5, 2024

Google has patched a critical zero-day vulnerability, CVE-2024-36971, in the Android kernel that was being exploited in targeted attacks.

August 5, 2024

A significant security bypass vulnerability, identified as CVE-2024-6242, has been revealed in Rockwell Automation ControlLogix 1756 devices.

August 4, 2024

Volexity, a cybersecurity firm, has revealed that a Chinese APT group known as StormBamboo (also referred to as Evasive Panda, Daggerfly, and StormCloud) has successfully breached an undisclosed ISP.

August 2, 2024

APT41, a state-sponsored Chinese threat actor, has reportedly infiltrated a Taiwanese research institute affiliated with the government.