Fortinet has urgently notified users of a critical OS command injection vulnerability in its FortiSIEM platform, identified as CVE-2025-25256, which ...

Microsoft has disclosed a serious vulnerability in its collaboration platform, Microsoft Teams, that could open the door to Remote Code Execution (RCE) attacks. The flaw, tracked as CVE-2025-53783, ...

Patch Tuesday August 2025 included fixes for 19 vulnerabilities rated 8.8 or higher, but only one of those is considered at high risk of exploitation.

Xerox Corporation has issued urgent security updates addressing two high-impact vulnerabilities in its FreeFlow Core software. The flaws, now tracked as CVE-2025-8355 and CVE-2025-8356, have the ...

A new zero-day vulnerability in WinRAR (CVE-2025-8088) is being exploited in the wild by the Russia-aligned hacking group RomCom, according to newly published research from ESET. The flaw, silently ...

Zelenskyy Signs Law Advancing Cybersecurity of Ukraine’s State Networks and Critical Infrastructure As Russian cyber aggression intensifies, Ukraine adopts new legislation to modernize national ...

This article talks about what are vulnerabilities, their types & causes, and details how to implement a winning vulnerability management strategy.

Over 7 Million SSNs Potentially Exposed in University of Minnesota Data Breach The hacker claimed to have used CNE to access the university's data warehouse, which contained valuable and sensitive ...

RedHook is a new Android banking trojan using phishing and RAT tools to target Vietnamese users while evading antivirus detection.

Ghost ransomware remains a persistent threat to organizations, with attacks escalating as vulnerabilities in outdated software remain unpatched.

Russia-linked hackers are back at it again, this time with upgraded tools and a stealthier playbook targeting Ukrainian government systems.

HPE warns of critical CVE-2025-37093 in StoreOnce software. Vulnerability allows remote access. Patch to version 4.3.11 or later urged for all users.