Business-grade email server software SmarterMail just patched a maximum-severity vulnerability that allowed threat actors to ...

Executive Overview Over the past week, global threat activity has highlighted a critical reality: modern cyber attacks are faster, more coordinated, and increasingly industrialized. From mass ...

Over 115,000 WatchGuard Firebox devices exposed online remain unpatched against a critical remote code execution (RCE) vulnerability actively exploited in attacks. The security flaw, tracked as ...

An Active! Mail zero-day remote code execution vulnerability is actively exploited in attacks on large organizations in Japan. Active! mail is a web-based email client developed initially by TransWARE ...

Ivanti has disclosed two zero-day vulnerabilities in its Endpoint Manager Mobile product that threat actors have chained together for remote code execution (RCE) attacks. In a security advisory ...

Hackers have been targeting WhatsApp users on iOS and Mac The threat actors abused a new bug which enabled zero-click attacks Meta apparently sent less than 200 cyberattack warning notifications ...

VLex's Vincent AI assistant, used by thousands of law firms worldwide, is vulnerable to AI phishing attacks that can steal users’ login credentials and client files.

Security researchers identified 23 vulnerabilities in Apple’s AirPlay Protocol and AirPlay Software Development Kit. The vulnerabilities, collectively dubbed “AirBorne,” could expose devices to remote ...

A series of known and powerful botnets are ramping up attacks against Web-exposed assets such as PHP servers, Internet of Things (IoT) devices, and cloud gateways to gain control over network ...

A vulnerability advisory was issued for a WordPress Contact Form 7 add-on plugin that enables unauthenticated attackers to “easily” launch a remote code execution. The vulnerability is rated high (8.8 ...