February 9, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has verified that a critical remote code execution (RCE) vulnerability (CVE-2024-21762) in Fortinet's FortiOS system, which was recently fixed, is being actively exploited.

February 8, 2024

Fortinet has issued a warning about a new critical remote code execution vulnerability in its FortiOS SSL VPN, which is likely being exploited in cyberattacks.

February 8, 2024

Ivanti has sounded the alarm over a new authentication bypass vulnerability that is affecting its Connect Secure, Policy Secure, and ZTA gateways.

February 8, 2024

The Military Intelligence and Security Service (MIVD) of the Netherlands has issued a warning regarding the discovery of a new malware strain, dubbed 'Coathanger', being used by the Chinese government.

February 8, 2024

Fortinet has issued a warning about two new unpatched patch bypasses for a severe remote code execution vulnerability in its Security Information and Event Management (SIEM) solution, FortiSIEM.

February 7, 2024

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a bug in Google's Chromium V8, referred to as a 'Type Confusion bug', to its catalog of Known Exploited Vulnerabilities (KEV).

February 7, 2024

In a move to curb human rights abuses through the misuse of commercial spyware, a coalition of countries, including the U.S., U.K., and France, along with tech giants like Google, Meta, Microsoft, and MDSec, have signed a joint agreement.

February 6, 2024

Google has rolled out its February 2024 security patches for Android, addressing a total of 46 vulnerabilities.

February 6, 2024

JetBrains, the software development company, has issued an urgent call to customers to patch their TeamCity On-Premises servers due to a critical authentication bypass vulnerability.

February 5, 2024

An SSRF vulnerability (CVE-2024-21893) in Ivanti's Connect Secure and Policy Secure is currently being exploited by numerous attackers.