June 27, 2023

Fortinet has issued updates to rectify a significant security vulnerability in its FortiNAC network access control solution, which could result in the execution of arbitrary code.

June 26, 2023

The Chinese state-sponsored APT group 'Volt Typhoon', also known as 'Vanguard Panda', has been found exploiting a critical vulnerability in Zoho's ManageEngine ADSelfService Plus.

June 26, 2023

The NYC DOE has reported a substantial data breach that has affected its MOVEit Transfer server, leading to the theft of sensitive personal information of approximately 45,000 students.

June 26, 2023

CrowdStrike researchers have noticed a new approach employed by the China-linked APT group VANGUARD PANDA, or Volt Typhoon, to infiltrate target networks.

June 26, 2023

Microsoft has issued a warning regarding a significant increase in credential-stealing attacks being carried out by the Russian state-affiliated hacker group, Midnight Blizzard.

June 24, 2023

Grafana has issued security patches for several versions of its software to address a critical vulnerability, CVE-2023-3128, which enables attackers to bypass authentication and take control of any Grafana account that uses Azure Active Directory (AD) for authentication.

June 23, 2023

The US National Security Agency (NSA) is urging system administrators to take extra steps beyond patching to safeguard Windows 10 and 11 machines from the BlackLotus bootkit malware.

June 23, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has instructed federal agencies to address recently patched iPhone security vulnerabilities that have been exploited by the Triangulation spyware.

June 23, 2023

Fortinet has recently fixed a critical remote code execution (RCE) vulnerability in its network access control (NAC) solution, FortiNAC.

June 22, 2023

A vulnerability in Microsoft Azure Active Directory (AD) environments could put thousands of organizations at risk of an authentication bypass, enabling attackers to take over online and cloud accounts.