September 19, 2023

GitLab, a widely used web-based open-source software project management and work tracking platform, has issued security updates to address a critical vulnerability.

September 19, 2023

Trend Micro has rectified a zero-day code execution vulnerability, designated as CVE-2023-41179, in its Apex One product.

September 19, 2023

A cyber threat group with links to China, known as Earth Lusca, has been discovered attacking government bodies utilizing a new Linux backdoor named SprySOCKS.

September 18, 2023

A threat actor fluent in Chinese, who has been skimming credit card details from ecommerce sites and point-of-sale service providers in the Asia/Pacific region for over a year, has started targeting similar entities in North and Latin America.

September 18, 2023

Approximately 12,000 Juniper SRX firewalls and EX switches are exposed to an unauthenticated, fileless remote code execution flaw.

September 18, 2023

Fortinet, a major cybersecurity company, has launched patches to fix a severe cross-site scripting (XSS) vulnerability that affects its enterprise-grade firewalls and switches.

September 17, 2023

The Clop ransomware group, also known as Lace Tempest, has reportedly stolen personal data from several major hospitals in North Carolina.

September 15, 2023

Microsoft has uncovered a series of password spray attacks conducted by Iranian nation-state actors, identified as Peach Sandstorm, across thousands of organizations globally from February to July 2023.

September 14, 2023

The proof-of-concept (PoC) exploit code for a high-severity remote code execution (RCE) vulnerability in Windows Themes, known as ThemeBleed and tracked as CVE-2023-38146, has been made public.

September 13, 2023

MGM, the hospitality giant, is under scrutiny for its cybersecurity practices following a suspected cyber attack that disrupted its operations.