Sophos has patched five vulnerabilities in Sophos Firewall that could allow remote attackers to execute arbitrary code.

The first high-severity bug, CVE-2025-8027, impacts the browser’s JavaScript engine, which only writes partial return values ...

The Lumma Stealer is back after Microsoft and law enforcement took action to significantly disrupt the malware’s ...

Cisco says it is aware of attempted exploitation of critical ISE vulnerabilities leading to unauthenticated remote code ...

CISA has added two recent SysAid flaws, CVE-2025-2776 and CVE-2025-2775, to its Known Exploited Vulnerabilities (KEV) catalog.

Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell ...

Microsoft warned SharePoint Server users of a vulnerability dubbed ToolShell in the software that was assigned CVE-2025-53770 ...

Dell confirms the compromise of a demo environment containing synthetic data after hackers leak allegedly stolen information.

Security Operations: 10 ways modern environments are undermining SOC effectiveness—and what enterprises must do to reclaim ...

Vulnerabilities, including ones allowing full control over a device, have been discovered and patched in Helmholz REX 100 ...

Microsoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and CVE-2025-53771.

British cybersecurity solutions provider Darktrace has announced the acquisition of network traffic visibility firm Mira Security. Founded in 2013, Darktrace leverages proprietary AI models to deliver ...