January 28, 2025

It is suspected that hackers are exploiting vulnerabilities in the SimpleHelp Remote Monitoring and Management (RMM) software to gain initial access to target networks.

January 28, 2025

Fortinet has addressed a critical zero-day vulnerability that was being actively exploited in its FortiOS and FortiProxy products.

January 27, 2025

Apple has issued security updates to address the first zero-day vulnerability of the year, known as CVE-2025-24085, which has been actively exploited in attacks against iPhone users.

January 27, 2025

RyotaK, a security researcher from GMO Flatt Security Inc, uncovered several vulnerabilities in Git's credential retrieval protocol, which could have allowed threat actors to access user credentials.

January 26, 2025

A critical security flaw, designated as CVE-2024-50050, has been uncovered in Meta's Llama large language model (LLM) framework.

January 26, 2025

Cisco has rolled out security patches to fix a denial-of-service (DoS) vulnerability in ClamAV, identified as CVE-2025-20128.

January 24, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a known vulnerability in SonicWall's SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC) to its Known Exploited Vulnerabilities catalog.

January 24, 2025

SonicWall has alerted its customers about a critical security vulnerability, identified as CVE-2025-23006, which affects its Secure Mobile Access (SMA) 1000 Series appliances.

January 23, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have issued a warning about threat actors exploiting a series of vulnerabilities in Ivanti's Cloud Service Appliance (CSA).

January 21, 2025

Two distinct campaigns are currently exploiting vulnerabilities in a variety of IoT devices across the globe, with the objective of compromising these devices and disseminating malware on a global scale.