The security flaw could allow threat actors to execute arbitrary code on unpatched Veeam Service Provider Console server machines.

A second vulnerability in Zyxel firewalls has been exploited in Helldown ransomware attacks over the past weeks.

In current versions, the developers of SailPoint have closed a critical vulnerability in IdenetityIQ. Attackers can attack the identity and access management solution IdentityIQ from SailPoint. If ...

Veeam fixes critical Service Provider Console flaws, including CVE-2024-42448 (RCE), urging immediate updates.

A critical security vulnerability has been disclosed in SailPoint's IdentityIQ identity and access management (IAM) software ...

A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been ...

Threat actors are using a well-known modular malware loader, SmokeLoader, to exploit known Microsoft Office vulnerabilities ...

A critical-severity vulnerability in open source enterprise network monitoring tool Zabbix could lead to full system compromise.

Russia-backed hackers, known as RomCom, have exploited critical zero-day vulnerabilities in Mozilla Firefox and Windows to ...

ESET Research details the analysis of a previously unknown vulnerability in Mozilla products exploited in the wild and ...

The Mozilla-related critical vulnerability discovered by ESET Research on October 8 has a CVSS score of 9.8 on a scale from 0 ...