"Attackers are leveraging the unauthenticated command injection in ICTBroadcast via the BROADCAST cookie to gain remote code ...

Today is Microsoft' 2025 Patch Tuesday, which includes security updates for 172 flaws, including six zero-day vulnerabilities ...

Oracle has silently fixed an Oracle E-Business Suite vulnerability (CVE-2025-61884) that was actively exploited to breach ...

Unity Technologies has released a patch to fix a security vulnerability that could have allowed malicious code execution in ...

Critical158Important2Moderate0LowMicrosoft addresses 167 CVEs in its largest Patch Tuesday to date, including three zero-day ...

Vietnam is second only to Indonesia in Southeast Asia in terms of the number of attacks exploiting vulnerabilities in the ...

Two recently discovered security flaws could make 7-Zip a serious risk to data and system security. These bugs had been known internally for months, and 7-Zip ...

We’re doubling our top award to $2 million for exploit chains that can achieve similar goals as sophisticated mercenary ...

Microsoft is making a compatibility feature more difficult to enable after discovering that it was being exploited by hackers ...

Following active attacks, Microsoft has drastically restricted Internet Explorer mode in Edge. Attackers even used zero-days ...

Trend Micro’s Zero Day Initiative (ZDI) has published 13 advisories describing unpatched vulnerabilities in Ivanti Endpoint ...

A 13-year-old critical flaw in Redis servers, rated a perfect 10 out of 10 in severity, can let an authenticated user trigger ...