November 12, 2023

The LockBit ransomware group has released data stolen from Boeing, a major player in the aerospace industry that caters to both commercial aviation and defense systems.

November 9, 2023

Microsoft has recently identified that the threat actor Lace Tempest is exploiting a zero-day vulnerability in SysAid IT support software.

November 9, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding the active exploitation of a Service Location Protocol (SLP) vulnerability by threat actors.

November 7, 2023

Veeam has remedied four vulnerabilities in its IT infrastructure monitoring and analytics platform, Veeam ONE.

November 6, 2023

Attackers have begun to exploit a critical authentication bypass vulnerability in Atlassian Confluence, using it to encrypt the files of victims with Cerber ransomware.

November 6, 2023

The TellYouThePass ransomware is now targeting Apache ActiveMQ servers, exploiting a critical remote code execution (RCE) vulnerability.

November 6, 2023

QNAP Systems has released security advisories concerning two critical command injection vulnerabilities that affect numerous versions of the QTS operating system and applications on its network-attached storage (NAS) devices.

November 4, 2023

Researchers from the cloud security firm Aqua have detected threat actors exploiting the recently uncovered Linux privilege escalation flaw known as Looney Tunables (CVE-2023-4911) in attacks targeting cloud environments.

November 3, 2023

Atlassian recently disclosed a major security vulnerability in its Confluence Data Center and Server technology, tracked as CVE-2023-22518.

November 3, 2023

Okta, a prominent identity and access management (IAM) firm, has verified that its customer support system was compromised by threat actors.