SolarWinds fixes four critical web help desk flaws related to unauthenticated RCE and authentication bypass
SolarWinds has released a security update that addresses multiple security vulnerabilities impacting…
3 decisions CISOs must make to prevent downtime risk in 2026
In addition to the direct impact of a cyberattack, businesses suffer from…
Two Ivanti EPMM zero-day RCE flaws actively exploited, security update released
Ivanti has released security updates to address two security flaws that affect…
CERT Polska details coordinated cyberattacks on over 30 wind and solar farms
CERT Polska, Poland's computer emergency response team, has uncovered a coordinated cyberattack…
Iran-linked RedKitten cyber campaign targets human rights NGOs and activists
Farsi-speaking attackers aligned with Iran's national interests are suspected of being behind…
Mandiant discovers ShinyHunters-style Vishing attack that steals MFA and compromises SaaS platforms
Mandiant, a Google company, said Friday that it has seen "expanded threat…
SmarterMail fixes critical uncertified RCE flaw in CVSS 9.3 scores
SmarterTools has addressed two additional security flaws in its SmarterMail email software.…
China-linked UAT-8099 targets IIS servers in Asia with BadIIS SEO malware
Cybersecurity researchers have discovered a new campaign allegedly by China-linked attackers. UAT-8099…
Researchers discover Chrome extension that exploits affiliate links to steal ChatGPT access
Cybersecurity researchers have discovered a malicious Google Chrome extension with the ability…