HomeTopics 5Vulnerability Management

Vulnerability Management

Authentication Systems

Critical Alert: Cisco SD-WAN Authentication Bypass (CVSS 10.0) Actively Exploited

Technology & Telecom

Broadcom Issues High-Severity Advisory for VMware Aria Operations Flaws (CVE-2026-22719, -22720, -22721)

Application Security

Popular Developer Tool Notepad++ Targeted in State-Sponsored Supply Chain Attack

Vulnerability Management

InputPlumber Flaws Expose Linux Systems to UI Input Injection and DoS Attacks

Linux users - particularly those running SteamOS and gaming-focused distributions - are being urged to update immediately after security researchers uncovered serious authorization and...

Technology & Telecom

CRITICAL SECURITY BULLETIN: Trend Micro Apex Central On-Premise Hit by Multiple High-Risk Vulnerabilities

Trend Micro has issued a critical security advisory for its Apex Central (on-premise) management platform, warning that multiple vulnerabilities - one of them allowing...

Vulnerability Management

FortiWeb Devices Hijacked to Deploy Sliver C2 in Stealthy Global Campaign

Security researchers have uncovered a stealthy cyber campaign abusing outdated FortiWeb web application firewall appliances to deploy Sliver command-and-control (C2) malware, giving attackers persistent...

Database Security

Critical MongoDB Flaw Lets Unauthenticated Attackers Leak Sensitive Memory Data

A quiet flaw with serious consequences - A critical security vulnerability in MongoDB is putting organizations worldwide at risk, allowing attackers to remotely leak...

Network Security

Product Security Advisory: Fortinet Confirms Active Abuse of FG-IR-19-283 Authentication Bypass

Fortinet has confirmed active, in-the-wild abuse of FG-IR-19-283 (CVE-2020-12812), a vulnerability first disclosed in July 2020 that can allow attackers to bypass two-factor authentication...

Virtual private networks (VPNs)

Critical WatchGuard Firebox VPN Vulnerability Actively Exploited in the Wild

WatchGuard has issued an urgent security advisory after confirming active exploitation of a critical vulnerability (CVE-2025-14733) affecting its widely deployed Firebox firewall appliances. The flaw...

Application Security

The 2025 CWE Top 25: What the World’s Most Dangerous Software Weaknesses Reveal About the Future of Cybersecurity

The 2025 CWE Top 25 Most Dangerous Software Weaknesses has been released, and the message is clear: the same deeply rooted coding flaws continue...

12 3...10 Page 1 of 10

- Never miss a story with notifications

- Gain full access to our premium content

- Browse free from up to 5 devices at once

Must read

Messaging Security

Signal Warns of Targeted Phishing Campaign Hijacking Accounts of Journalists and Government Officials

Critical Alert: Cisco SD-WAN Authentication Bypass (CVSS 10.0) Actively Exploited

Malicious NuGet Package Impersonates Stripe, Attempts to Steal API Keys from Developers

Refund Scam Impersonates Avast to Steal Credit Card Data from French-Speaking Users

Signal Warns of Targeted Phishing Campaign Hijacking Accounts of Journalists and Government Officials

Critical Alert: Cisco SD-WAN Authentication Bypass (CVSS 10.0) Actively Exploited

Malicious NuGet Package Impersonates Stripe, Attempts to Steal API Keys from Developers

Refund Scam Impersonates Avast to Steal Credit Card Data from French-Speaking Users

Vulnerability Management

Critical Alert: Cisco SD-WAN Authentication Bypass (CVSS 10.0) Actively Exploited

Broadcom Issues High-Severity Advisory for VMware Aria Operations Flaws (CVE-2026-22719, -22720, -22721)

Popular Developer Tool Notepad++ Targeted in State-Sponsored Supply Chain Attack

Signal Warns of Targeted Phishing Campaign Hijacking Accounts of Journalists and Government Officials

Ghanaian National Pleads Guilty in $100M Romance Scam and Business Email Compromise Scheme

Critical Alert: Cisco SD-WAN Authentication Bypass (CVSS 10.0) Actively Exploited

Malicious NuGet Package Impersonates Stripe, Attempts to Steal API Keys from Developers

Signal Warns of Targeted Phishing Campaign Hijacking Accounts of Journalists and Government Officials

Critical Alert: Cisco SD-WAN Authentication Bypass (CVSS 10.0) Actively Exploited

Malicious NuGet Package Impersonates Stripe, Attempts to Steal API Keys from Developers

Refund Scam Impersonates Avast to Steal Credit Card Data from French-Speaking Users

Cybercory Magazine

Latest

Signal Warns of Targeted Phishing Campaign Hijacking Accounts of Journalists and Government Officials

Ghanaian National Pleads Guilty in $100M Romance Scam and Business Email Compromise Scheme

Critical Alert: Cisco SD-WAN Authentication Bypass (CVSS 10.0) Actively Exploited

Popular

Signal Warns of Targeted Phishing Campaign Hijacking Accounts of Journalists and Government Officials

Ghanaian National Pleads Guilty in $100M Romance Scam and Business Email Compromise Scheme

Critical Alert: Cisco SD-WAN Authentication Bypass (CVSS 10.0) Actively Exploited

Useful Links

Quick Links