CISA warned that a recently patched local privilege escalation vulnerability in Sudo has been exploited in the wild.

ShadowLeak allows attackers to exfiltrate sensitive data without user interaction, highlighting AI security risks.

Servers running on motherboards sold by Supermicro contain high-severity vulnerabilities that can allow hackers to remotely ...

In an in-depth report detailing the incident, the US Cybersecurity and Infrastructure Security Agency (CISA) outlined how the ...

The vulnerability in question is CVE-2025-51591 (CVSS score: 6.5), which refers to a case of Server-Side Request Forgery (SSRF) that allows attackers to compromise a target system by injecting a ...

Hackers are exploiting a server-side request forgery (SSRF) vulnerability in Ivanti Connect Secure, Policy Secure, and ZTA gateways to deploy the new DSLog backdoor on vulnerable devices. The ...

CISA has shared details on the exploitation of a year-old GeoServer vulnerability to compromise a federal agency.

An unnamed federal agency was hacked last year after threat actors exploited a critical GeoServer vulnerability ...

Hackers launched attacks just one day after the flaw’s full technical write-up was made public Many servers stayed vulnerable for weeks despite a fix being released long before the disclosure Null ...

Broadcom warned today that attackers are now exploiting two VMware vCenter Server vulnerabilities, one of which is a critical remote code execution flaw. TZL security researchers reported the RCE ...

Tenable Research recently discovered that the original patch for a critical vulnerability affecting BentoML could be bypassed ...

Ransomware hackers have started exploiting one or more recently fixed vulnerabilities that pose a grave threat to enterprise networks around the world, researchers said. One of the vulnerabilities has ...