July 21, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog.

July 19, 2024

Cisco has addressed a critical security flaw, identified as CVE-2024-20401, in its Security Email Gateway (SEG).

July 18, 2024

Cisco has issued a fix for a high-risk vulnerability, designated as CVE-2024-20419, that allows threat actors to modify any user or admin password.

July 18, 2024

SolarWinds recently addressed eight critical vulnerabilities in its Access Rights Manager (ARM) software.

July 18, 2024

A new cyber threat actor, known as TAG-100, has been discovered using open-source tools as part of a suspected global cyber espionage campaign.

July 17, 2024

Cisco has addressed a critical vulnerability in its Cisco Smart Software Manager On-Prem (SSM On-Prem) license servers that allowed attackers to alter the passwords of any user, including those of administrators.

July 16, 2024

CISA has alerted about the active exploitation of a critical GeoServer GeoTools remote code execution vulnerability, identified as CVE-2024-36401.

July 16, 2024

The Void Banshee advanced persistent threat (APT) group has been exploiting a yet-to-be-patched Microsoft zero-day vulnerability, CVE-2024-38112, in a spear-phishing campaign to propagate the Atlantida Stealer malware.

July 15, 2024

Cybersecurity experts have unearthed a new version of the ransomware strain known as HardBit.

July 13, 2024

Cloudflare's 2024 Application Security report reveals an alarming trend: cybercriminals are weaponizing publicly available proof-of-concept (PoC) exploits in as little as 22 minutes after they're released.