November 17, 2023

Fortinet has issued a warning to its customers about a critical OS command injection vulnerability identified as CVE-2023-36553 in its FortiSIEM report server.

November 16, 2023

A recently developed proof-of-concept (PoC) exploit is taking advantage of a critical security vulnerability (CVE-2023-46604) in Apache ActiveMQ, an open-source message broker.

November 16, 2023

The Zimbra Collaboration Suite (ZCS), a platform offering email server, calendaring, chat, and video services, has been targeted by at least four different cyber-attack groups, exploiting a previously unknown vulnerability to steal email data, user credentials, and authentication tokens from various government organizations worldwide.

November 16, 2023

A new advanced persistent threat (APT) group, known as DarkCasino, has been discovered exploiting a recently uncovered security flaw in the WinRAR software.

November 15, 2023

Citrix has launched hotfixes for a pair of vulnerabilities affecting the Citrix Hypervisor, including a high-severity flaw, dubbed 'Reptar', that impacts Intel CPUs used in desktop and server systems.

November 15, 2023

The FBI and CISA have issued an advisory warning of the Rhysida ransomware gang's opportunistic attacks on organizations across multiple sectors.

November 14, 2023

VMWare has reported a critical and yet unpatched authentication bypass vulnerability that affects Cloud Director appliance deployments.

November 14, 2023

Microsoft has released its November 2023 Patch Tuesday updates, which include patches for 58 vulnerabilities, five of which are zero-day flaws.

November 14, 2023

Microsoft has rectified a severe security issue in Azure CLI that risked exposing credentials in logs.

November 13, 2023

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities catalog with the addition of six new vulnerabilities.