Vulnerabilities | News, how-tos, features, reviews, and videos
AI is simplifying all sorts of tasks — and not always for the better: cybercriminals, too, are adopting it.
Hyperscalers grapple with Linguistic Lumberjack vulnerability.
Research from Rapid7 shows a spike in zero-days contributing to quicker exploit timelines, leaving IT security teams under strain with a greater need for post-incident response.
The company’s Patch Tuesday includes fixes for flaws in Windows Desktop Window Manager, Windows MSHTML, and Visual Studio, among others, that IT security orgs should prioritize.
A crisis at the key US service for ranking vulnerabilities has been fueled by short resources and an explosion of security flaws as the volume of software production increases.
Details of the use-after-free memory vulnerability were not publicly released, but Google says it’s aware an exploit for the bug exists.
Two high-risk vulnerabilities could allow attackers to gain full administrative control on devices via leaked password hashes.
Researchers found a deep, unpatchable flaw in virtual private networks dubbed Tunnelvision can allow attackers to siphon off data without any indication that they are there.
Much similar to Citrix-Bleed, the information disclosure bug was identified within NetScaler devices configured as gateway or virtual servers.
The advisory highlights how developers can follow best practices to fix these vulnerabilities during production.