vulnerabilities

BYOVD Attacks in Paragon Partition Manager: Zero-Day Exploited Revealed

March 4, 2025

A serious BYOVD attack has been identified, exploiting a zero-day vulnerability in Paragon Partition Manager, posing significant risks to users....

Old Vulnerabilities Remain Among the Most Widely Exploited in Cybersecurity

March 1, 2025

Old vulnerabilities continue to present significant risks in cybersecurity, as cyber threat actors exploit both new and long-standing weaknesses to...

Rising Software Vulnerabilities: Average Patch Time Nears Nine Months

February 28, 2025

In an alarming trend, the average time to fix software vulnerabilities has now reached nearly nine months, according to Veracode’s...

API-Related Security Issues: 99% of Organizations Affected

February 27, 2025

In today's digital landscape, API-related security issues are a pressing concern, as highlighted by 99% of organizations reporting challenges in...

Palo Alto Networks Firewall Vulnerabilities: Hackers Exploit Three Critical Flaws

February 22, 2025

Cybersecurity threats are on the rise as hackers exploit critical vulnerabilities in Palo Alto Networks firewalls. The unpatched flaws present...

Critical OpenSSH Vulnerabilities Expose Systems to Attacks

February 19, 2025

Critical vulnerabilities in OpenSSH have been identified, exposing systems to potential man-in-the-middle and denial-of-service attacks. Discover how to safeguard your...

Immediate Action Needed: Palo Alto Networks and SonicWall Firewalls Vulnerabilities Exposed

February 18, 2025

Palo Alto Networks and SonicWall customers are urged to promptly address critical vulnerabilities affecting their firewall products. Palo Alto Networks...

Microsoft Addresses Two Actively Exploited Zero-Day Vulnerabilities

February 13, 2025

Microsoft has recently implemented critical security updates addressing two zero-day vulnerabilities that are currently under active exploitation. Microsoft has been...

768 CVEs Exploited in the Wild in 2024: A 20% Increase Noted

February 4, 2025

In 2024, a concerning total of 768 CVEs were identified as exploited in the wild, marking a significant increase from...

NCSC Urges Software Vendors to Eliminate Unforgivable Vulnerabilities

February 2, 2025

The National Cyber Security Centre (NCSC) is urging the software industry to address critical vulnerabilities through enhanced developer security practices....

Chained Vulnerabilities Exploited in Ivanti Cloud Service Appliances: A Cybersecurity Alert

January 28, 2025

Threat actors are actively exploiting chained vulnerabilities in Ivanti Cloud Service Appliances (CSA), intensifying the risk of cyber-attacks on organizations....

Oracle Patch Update: 320 Vulnerabilities Addressed in January Release

January 22, 2025

Oracle will address 320 security vulnerabilities in its January Patch Update, affecting a wide range of products and services. Software...

Microsoft Starts 2025 Strong: Patches Eight Critical Zero-Day Vulnerabilities

January 16, 2025

In its first Patch Tuesday of 2025, Microsoft addressed eight critical zero-day vulnerabilities, including three actively exploited flaws that require...

Cyber Hygiene Adoption Surge Leads to Sharp Drop in Remediation Times

January 15, 2025

Cyber hygiene practices are crucial for enhancing remediation times in critical national infrastructure, as highlighted by the latest CISA report....

Active Exploitation of Critical Ivanti Zero-Day Vulnerability Revealed

January 10, 2025

The urgency has risen as the UK’s National Cyber Security Centre and its US counterpart highlight the need for Ivanti...

Critical Flaws in Fancy Product Designer Plugin Threaten WordPress Security

January 10, 2025

Significant vulnerabilities have been discovered in the Fancy Product Designer plugin for WooCommerce, putting WordPress sites at risk. Two major...

Moxa Issues Urgent Call for Immediate Security Updates

January 8, 2025

Moxa is urging all users to promptly address significant security vulnerabilities found in its cellular routers and network security appliances....

Critical Vulnerabilities in WPLMS and VibeBP WordPress Plugins Exposed

December 24, 2024

Discover the serious vulnerabilities affecting WPLMS and VibeBP plugins. Stay informed to protect your WordPress site effectively. Understanding the VulnerabilitiesRecent...

Veeam Issues Urgent Update for Critical Vulnerabilities in VSPC Software

December 6, 2024

Veeam has announced the immediate need for updates to address two severe vulnerabilities in the Veeam Service Provider Console (VSPC),...

Critical Vulnerabilities in Industrial Wireless Access Point: Immediate Action Required

November 28, 2024

Recent findings reveal critical vulnerabilities in the Advantech EKI-6333AC-2G industrial wireless access point, with significant security risks for users in...

Russian RomCom APT Group Exploits Zero-Day Vulnerabilities in Firefox and Windows

November 28, 2024

The Russian-aligned RomCom Advanced Persistent Threat (APT) group has recently been reported to exploit critical zero-day vulnerabilities in Firefox and...

OSS-Fuzz Uses AI to Uncover 26 Security Vulnerabilities in Open Source Projects

November 22, 2024

Google's OSS-Fuzz team has leveraged AI technology to uncover 26 previously hidden security vulnerabilities in open-source projects. This innovative approach...

Emergency Security Update: Apple Addresses Actively Exploited Vulnerabilities

November 21, 2024

Apple's latest emergency security update is crucial for protecting users from two actively exploited vulnerabilities in their devices. Apple has...

Bank of England U-Turns on Critical Third Party Vulnerability Disclosure Rules

November 15, 2024

The Bank of England has revised its approach towards vulnerability disclosure rules for critical third party organizations, emphasizing cybersecurity resilience....

vulnerabilities

BYOVD Attacks in Paragon Partition Manager: Zero-Day Exploited Revealed

Old Vulnerabilities Remain Among the Most Widely Exploited in Cybersecurity

Rising Software Vulnerabilities: Average Patch Time Nears Nine Months

API-Related Security Issues: 99% of Organizations Affected

Palo Alto Networks Firewall Vulnerabilities: Hackers Exploit Three Critical Flaws

Critical OpenSSH Vulnerabilities Expose Systems to Attacks

Immediate Action Needed: Palo Alto Networks and SonicWall Firewalls Vulnerabilities Exposed

Microsoft Addresses Two Actively Exploited Zero-Day Vulnerabilities

768 CVEs Exploited in the Wild in 2024: A 20% Increase Noted

NCSC Urges Software Vendors to Eliminate Unforgivable Vulnerabilities

Chained Vulnerabilities Exploited in Ivanti Cloud Service Appliances: A Cybersecurity Alert

Oracle Patch Update: 320 Vulnerabilities Addressed in January Release

Microsoft Starts 2025 Strong: Patches Eight Critical Zero-Day Vulnerabilities

Cyber Hygiene Adoption Surge Leads to Sharp Drop in Remediation Times

Active Exploitation of Critical Ivanti Zero-Day Vulnerability Revealed

Critical Flaws in Fancy Product Designer Plugin Threaten WordPress Security

Moxa Issues Urgent Call for Immediate Security Updates

Critical Vulnerabilities in WPLMS and VibeBP WordPress Plugins Exposed

Veeam Issues Urgent Update for Critical Vulnerabilities in VSPC Software

Critical Vulnerabilities in Industrial Wireless Access Point: Immediate Action Required

Russian RomCom APT Group Exploits Zero-Day Vulnerabilities in Firefox and Windows

OSS-Fuzz Uses AI to Uncover 26 Security Vulnerabilities in Open Source Projects

Emergency Security Update: Apple Addresses Actively Exploited Vulnerabilities

Bank of England U-Turns on Critical Third Party Vulnerability Disclosure Rules

CVE Alert: CVE-2025-0685

CVE Alert: CVE-2025-0686

CVE Alert: CVE-2025-27423

CVE Alert: CVE-2025-27422

CVE Alert: CVE-2025-27421

You may have missed