A recently patched Oracle Identity Manager vulnerability tracked as CVE-2025-61757 may have been exploited as a zero-day.

Threat actors are exploiting a recently patched 7-Zip vulnerability that leads to remote code execution (RCE), NHS England ...

SonicWall this week rolled out fixes for high-severity vulnerabilities in firewalls and Email Security appliances.

Surge in Palo Alto Networks scanning, WEL Companies data breach impacts 120,000 people, AI second-order prompt injection ...

The ShinyHunters hacking group has launched a new data theft campaign against Salesforce customers, exploiting Gainsight ...

A Chinese threat actor tracked as APT24 has been observed employing multiple techniques to deploy BadAudio malware ...

More than 370 organizations took part this week in the latest edition of GridEx, the largest grid security exercise in North ...

New Android banking trojan Sturnus is designed to target secure messaging applications such as WhatsApp, Telegram, and Signal ...

SolarWinds this week announced patches for three critical vulnerabilities found in its Serv-U enterprise file transfer ...

Microsoft recently mitigated a record-breaking distributed denial-of-service (DDoS) attack aimed at its Azure cloud service.

A Chinese state-sponsored threat actor has compromised 50,000 Asus routers to establish a network in support of global ...

Browser security firm SquareX claims to have found a potentially critical vulnerability in Perplexity’s Comet AI browser.