February 6, 2025

Cisco has issued fixes for two critical vulnerabilities in its Identity Services Engine (ISE), a platform used by businesses for identity and access management.

February 5, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has instructed federal agencies to fortify their systems against a high-risk Linux kernel flaw, known as CVE-2024-53104, within a three-week timeframe.

February 5, 2025

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has identified four new vulnerabilities that have been exploited in recent attacks.

February 4, 2025

Zyxel, a network hardware manufacturer, has released a security advisory warning about actively exploited vulnerabilities in its CPE Series devices.

February 4, 2025

A vulnerability in the 7-Zip file archiver program has been exploited by Russian hackers to bypass the Windows security feature known as Mark of the Web (MotW).

February 3, 2025

In the January 2025 security updates, Google has patched 48 vulnerabilities, among which is a zero-day kernel vulnerability (CVE-2024-53104) that has been exploited in the wild.

February 1, 2025

BeyondTrust, an American access management company, has recently completed an investigation into a cybersecurity incident that targeted its Remote Support Software as a Service (SaaS) instances.

February 1, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Food and Drug Administration (FDA) have raised concerns about certain vulnerabilities in Contec CMS8000 and Epsimed MN-120 patient monitors.

January 30, 2025

Voyager, a renowned open-source PHP package designed to manage Laravel applications, has been found to contain multiple vulnerabilities, according to researchers at SonarSource.

January 30, 2025

Akamai's Security Intelligence and Response Team (SIRT) has identified a new variant of the Mirai-based botnet malware Aquabot, known as Aquabotv3, which is exploiting CVE-2024-41710, a command injection vulnerability in Mitel SIP phones.