Vulnerabilities
-
Patch Tuesday January 2026: Exploited Zero Day, 8 High-Risk
Microsoft's Patch Tuesday January 2026 update includes fixes for one actively-exploited zero day vulnerability and eight additional high-risk flaws. In…
-
Patch Tuesday January 2026: Exploited Zero Day, 8 High-Risk
Microsoft's Patch Tuesday January 2026 update includes fixes for one actively-exploited zero day vulnerability and eight additional high-risk flaws. In…
-
Patch Tuesday January 2026: Exploited Zero Day, 8 High-Risk
Microsoft's Patch Tuesday January 2026 update includes fixes for one actively-exploited zero day vulnerability and eight additional high-risk flaws. In…
-
CISA Warns Of Attacks On PowerPoint And HPE Vulnerabilities
A 16-year-old Microsoft PowerPoint flaw and a new maximum-severity HPE vulnerability are the latest additions to CISA's Known Exploited Vulnerabilities…
-
CISA Known Exploited Vulnerabilities (KEV) Soared 20% In 2025
After stabilizing in 2024, the growth of known exploited vulnerabilities accelerated in 2025. That was one conclusion from Cyble's analysis…
-
Patch Tuesday December 2025: One Zero-Day, 6 High-Risk Flaws
Microsoft patched 57 vulnerabilities in its Patch Tuesday December 2025 update, including one exploited zero-day and six high-risk vulnerabilities. The…
-
CISA Warns That Two Android Vulnerabilities Are Under Attack
CISA warned today that two Android zero-day vulnerabilities are under active attack, within hours of Google releasing patches for the…
-
Qualcomm Warns Of Critical Chipset Vulnerabilities In 2025
Qualcomm warned partners and device manufacturers about multiple newly discovered vulnerabilities that span its chipset ecosystem. The Qualcomm released a…
-
Bug bounty & rewards
Apache Syncope CVE-2025-65998 Exposes AES Passwords
A critical security flaw has been uncovered in Apache Syncope, the widely used open-source identity management system, potentially putting organizations…
-
Startups
CISA Adds Oracle Identity Manager Vulnerability To KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added an Oracle Identity Manager vulnerability to its Known Exploited Vulnerabilities…