Cisco published advisories and a supplemental post about three zero-day vulnerabilities, two of which were exploited in the wild by an advanced threat actor associated with the ArcaneDoor ...

Akira ransomware operators are still finding ways to infiltrate SonicWall SSL VPN devices, despite known vulnerabilities ...

Microsoftは3月24日(現地時間)、Outlookのゼロデイ脆弱性「CVE-2023-23397」を利用した攻撃を発見するためのガイダンスを公開した。 Guidance for investigating attacks using CVE-2023-23397 - Microsoft Security Blog CVE-2023-23397は、Microsoft Outlook for ...

Get the latest federal technology news delivered to your inbox. The Cybersecurity and Infrastructure Security Agency extended its contract for the MITRE-backed Common Vulnerabilities and Exposures ...

A new CVE program roadmap outlines planned enhancements, such as better identification and prioritization of the most ...

CISA details attackers exploiting Ivanti EPMM zero-days CVE-2025-4427/4428 in May 2025, enabling persistent remote code ...

Cybersecurity professionals who need to track the latest vulnerability exploits now have a new tool designed to make their job easier, with the launch today of VulnCheck XDB, a database of exploits ...

The vulnerability in question is CVE-2025-51591 (CVSS score: 6.5), which refers to a case of Server-Side Request Forgery ...

MITRE Vice President Yosry Barsoum has warned that U.S. government funding for the Common Vulnerabilities and Exposures (CVE) and Common Weakness Enumeration (CWE) programs expires today, which could ...

There's no doubt that money can be made by owning shares of unprofitable businesses. For example, although software-as-a-service business Salesforce.com lost money for years while it grew recurring ...