HeadlinesFileless Remcos RAT Attack Evades Antivirus Using PowerShell ScriptsFileless Remcos RAT Attack Evades Antivirus Using PowerShell Scripts3 days agoHackReadSmokeLoader Malware Exploits MS Office Flaws to Steal Browser Credentials5 months agoHackReadRevamped Remcos RAT Deployed Against Microsoft Windows Users6 months agoDARKReadingHackers Use Excel Files to Deliver Remcos RAT Variant on Windows6 months agoHackRead Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials7 months agoThe Hacker NewsMulti-Stage ValleyRAT Targets Chinese Users with Advanced Tactics9 months agoThe Hacker NewsIndia-Linked SideWinder Group Pivots to Hacking Maritime Targets9 months agoDARKReadingNew SideWinder Cyber Attacks Target Maritime Facilities in Multiple Countries9 months agoThe Hacker NewsNew Phishing Campaign Uses Stealthy JPGs to Drop Agent Tesla11 months agoHackReadNorth Korea's Kimsuky APT Keeps Growing, Despite Public Outing2 years agoDARKReadingGHSA-9fwj-9mjf-rhj3: laravel-auth0 SDK Vulnerable to Brute Force Authentication Tags of CookieStore SessionsGHSA-9fwj-9mjf-rhj3: laravel-auth0 SDK Vulnerable to Brute Force Authentication Tags of CookieStore Sessions1 day agoghsaGHSA-2f4r-34m4-3w8q: Auth0 Wordpress plugin Vulnerable to Brute Force Authentication Tags of CookieStore Sessions1 day agoghsaGHSA-9wg9-93h9-j8ch: Auth0 Symfony SDK Vulnerable to Brute Force Authentication Tags of CookieStore Sessions1 day agoghsaGHSA-g98g-r7gf-2r25: Forgeable Encrypted Session Cookie in Apps Using Auth0-PHP SDK2 days agoghsaRussia-Linked SpyPress Malware Exploits Webmails to Spy on UkraineRussia-Linked SpyPress Malware Exploits Webmails to Spy on Ukraine14 hours agoHackReadUbuntu Security Notice USN-6654-11 year agoPacket Storm Patch now! Roundcube mail servers are being actively exploited 1 year agoMalwarebytesAlert: CISA Warns of Active 'Roundcube' Email Attacks - Patch Now1 year agoThe Hacker NewsNation State Hackers Exploiting Zero-Day in Roundcube Webmail Software1 year agoThe Hacker NewsAPT Winter Vivern Exploits New Roundcube 0-Day to Target European Entities1 year agoHackReadCVE-2023-43770: Security update 1.6.3 released1 year agoCVEMicrosoft Warns of Widescale Credential Stealing Attacks by Russian Hackers1 year agoThe Hacker NewsCVE-2020-35730: #978491 - roundcube: CVE-2020-35730: XSS vulnerability via malious HTML or plaintext messages4 years agoCVEGHSA-h4j7-5rxr-p4wc: Microsoft.Build.Tasks.Core .NET Spoofing VulnerabilityGHSA-h4j7-5rxr-p4wc: Microsoft.Build.Tasks.Core .NET Spoofing Vulnerability5 days agoghsaCVE-2025-26646: .NET, Visual Studio, and Build Tools for Visual Studio Spoofing Vulnerability6 days agoMicrosoft Security Response CenterINE Security Alert: Continuous CVE Practice Closes Critical Gap Between Vulnerability Alerts and Effective DefenseINE Security Alert: Continuous CVE Practice Closes Critical Gap Between Vulnerability Alerts and Effective Defense4 days agoHackReadEmerging Threats & Vulnerabilities to Prepare for in 20254 months agoDARKReadingOld Vulnerability Rated 9.9 Impacts All GNU/Linux Systems, Researcher Claims7 months agoHackReadCalibre 7.14.0 Remote Code Execution8 months agoPacket StormCacti Arbitrary File Write / Remote Code Execution8 months agoPacket StormUbuntu Security Notice USN-6969-19 months agoPacket StormAnatomy of an Attack9 months agoThe Hacker NewsOpenMetadata 1.2.3 Authentication Bypass / SpEL Injection9 months agoPacket StormCalibre 7.15.0 Python Code Injection9 months agoPacket StormApache log4j2 Code Execution9 months agoPacket StormFeds Warn of North Korean Cyberattacks on US Critical Infrastructure9 months agoDARKReadingCacti Import Packages Remote Code Execution11 months agoPacket StormTellYouThePass Ransomware Group Exploits Critical PHP Flaw11 months agoDARKReadingCacti 1.2.26 Remote Code Execution12 months agoPacket StormCritical Flaws in Cacti Framework Could Let Attackers Execute Malicious Code12 months agoThe Hacker NewsActive Kubernetes RCE Attack Relies on Known OpenMetadata Vulns1 year agoDARKReadingGHSA-g9cj-cfpp-4g2x: gradio vulnerable to Path Traversal1 year agoghsaUnderstanding the Red Hat security impact scale1 year agoRed Hat BlogHow CVSS 4.0 changes (or doesn’t) the way we see vulnerability severity1 year agoTALOSGHSA-p6gg-5hf4-4rgj: Graylog vulnerable to instantiation of arbitrary classes triggered by API request1 year agoghsaNew PoC Exploit for Apache OfBiz Vulnerability Poses Risk to ERP Systems1 year agoThe Hacker NewsCVE-2023-417261 year agoCVECVE-2022-437121 year agoCVECVE-2023-29382: Security Center - Zimbra :: Tech Center1 year agoCVECVE-2023-21954: Oracle Critical Patch Update Advisory - April 20232 years agoCVECVE-2023-28069: DSA-2022-258: Dell Streaming Data Platform Security Update for Multiple Third-Party Component Vulnerabilities2 years agoCVECVE-2022-369752 years agoCVECVE-2022-45589: Talend Security2 years agoCVECVE-2023-21850: Oracle Critical Patch Update Advisory - January 20232 years agoCVE4 over-hyped security vulnerabilities of 20222 years agoMalwarebytesGHSA-56wx-66px-9j66: OPKSSH Vulnerable to Authentication Bypass GHSA-56wx-66px-9j66: OPKSSH Vulnerable to Authentication Bypass 5 days agoghsaGHSA-537f-gxgm-3jjq: OpenPubkey Vulnerable to Authentication Bypass5 days agoghsaMicrosoft Patch Tuesday for May 2025 — Snort rules and prominent vulnerabilitiesMicrosoft Patch Tuesday for May 2025 — Snort rules and prominent vulnerabilities5 days agoTALOSCVE-2025-29966: Remote Desktop Client Remote Code Execution Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-32709: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-30400: Microsoft DWM Core Library Elevation of Privilege Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-32701: Windows Common Log File System Driver Elevation of Privilege Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-32706: Windows Common Log File System Driver Elevation of Privilege Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-30386: Microsoft Office Remote Code Execution Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-30385: Windows Common Log File System Driver Elevation of Privilege Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-30377: Microsoft Office Remote Code Execution Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-30397: Scripting Engine Memory Corruption Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-29967: Remote Desktop Client Remote Code Execution Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-29833: Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-24063: Kernel Streaming Service Driver Elevation of Privilege Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-29841: Universal Print Management Service Elevation of Privilege Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-29971: Web Threat Defense (WTD.sys) Denial of Service Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-29976: Microsoft SharePoint Server Elevation of Privilege Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-30382: Microsoft SharePoint Server Remote Code Execution Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-30388: Windows Graphics Component Remote Code Execution Vulnerability6 days agoMicrosoft Security Response CenterCVE-2025-30390: Azure ML Compute Elevation of Privilege Vulnerability19 days agoMicrosoft Security Response CenterIvanti EPMM Hit by Two Actively Exploited 0day VulnerabilitiesIvanti EPMM Hit by Two Actively Exploited 0day Vulnerabilities2 days agoHackReadIvanti Patches EPMM Vulnerabilities Exploited for Remote Code Execution in Limited Attacks5 days agoThe Hacker News1