SolarWinds announced a hotfix for RCE vulnerability in Web Help Desk, and this is the third time it attempts to address the ...

Third time’s the charm?’ asks a prominent security researcher after what appears to be the same critical Java deserialization ...

WordPress security scanner WPScan’s 2024 WordPress vulnerability report calls attention to WordPress vulnerability trends and suggests the kinds of things website publishers (and SEOs) should be ...

The vulnerability in question is CVE-2025-51591 (CVSS score: 6.5), which refers to a case of Server-Side Request Forgery ...

Cisco published advisories and a supplemental post about three zero-day vulnerabilities, two of which were exploited in the wild by an advanced threat actor associated with the ArcaneDoor ...

AWS security vulnerability exploited by threat actors with hackers stealing credentials via AWS IMDS through EC2 instances, ...

Salesforce Agentforce allowed attackers to hide malicious instructions in routine customer forms, tricking the AI into ...

A file containing personal details of San Diego Police Department employees, including individuals' names and contact information, was made available on the department's website in early January, the ...

Cisco released emergency patches for two firewall vulnerabilities exploited as zero-days in the ArcaneDoor espionage campaign ...

Apache has released a security update to address an important vulnerability in Tomcat web server that could lead to an attacker achieving remote code execution. Apache Tomcat is an open-source web ...

A vulnerability in the American Archive of Public Broadcasting's website allowed downloading of protected and private media ...

About a year ago, security researcher Sam Curry bought his mother a Subaru, on the condition that, at some point in the near future, she let him hack it. It took Curry until last November, when he was ...