Security News

Fortinet releases patches for undisclosed critical FortiManager vulnerability
2024-10-21 13:34

In the last couple of days, Fortinet has released critical security updates for FortiManager, to fix a critical vulnerability that is reportedly being exploited by Chinese threat actors. Security...

Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials
2024-10-20 07:37

Unknown threat actors have been observed attempting to exploit a now-patched security flaw in the open-source Roundcube webmail software as part of a phishing attack designed to steal user...

Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser
2024-10-18 05:42

Microsoft has disclosed details about a now-patched security flaw in Apple's Transparency, Consent, and Control (TCC) framework in macOS that has likely come under exploitation to get around a...

Critical Kubernetes Image Builder Vulnerability Exposes Nodes to Root Access Risk
2024-10-17 05:18

A critical security flaw has been disclosed in the Kubernetes Image Builder that, if successfully exploited, could be abused to gain root access under certain circumstances. The vulnerability,...

CISA Warns of Active Exploitation in SolarWinds Help Desk Software Vulnerability
2024-10-16 04:54

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a critical security flaw impacting SolarWinds Web Help Desk (WHD) software to its Known Exploited Vulnerabilities...

WordPress Plugin Jetpack Patches Major Vulnerability Affecting 27 Million Sites
2024-10-15 04:56

The maintainers of the Jetpack WordPress plugin have released a security update to remediate a critical vulnerability that could allow logged-in users to access forms submitted by others on a...

Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware
2024-10-14 08:55

Threat actors are actively attempting to exploit a now-patched security flaw in Veeam Backup & Replication to deploy Akira and Fog ransomware. Cybersecurity vendor Sophos said it has been tracking...

Firefox Update Patches Exploited Vulnerability
2024-10-11 19:49

Investigation of the use-after-free flaw is ongoing, but organizations and individual users can update Firefox now for a fix.

New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD Pipeline Execution
2024-10-11 06:29

GitLab has released security updates for Community Edition (CE) and Enterprise Edition (EE) to address eight security flaws, including a critical bug that could allow running Continuous...

Experts Warn of Critical Unpatched Vulnerability in Linear eMerge E3 Systems
2024-10-10 12:10

Cybersecurity security researchers are warning about an unpatched vulnerability in Nice Linear eMerge E3 access controller systems that could allow for the execution of arbitrary operating system...