CVE-2021-22681, an old vulnerability affecting ICS products from Rockwell Automation, has been exploited in attacks.

Google Cloud report details a sharp rise in attackers exploiting software vulnerabilities, including React2Shell ...

New Google report suggests cloud misconfigurations are on the decline, forcing crooks to pivot.

Google Threat Intelligence Group (GTIG) tracked 90 zero-day vulnerabilities actively exploited throughout 2025, almost half of them in enterprise software and appliances.

German software company SAP has finally disclosed and fixed a highly critical vulnerability in the NetWeaver Visual Composer development server after evidence of exploitation in the wild. NetWeaver ...

For a software vendor, telling the world about the latest security vulnerability is always a delicate balancing act. Customers need information quickly, starting with the flaw’s severity rating and ...

Exploited CVEs increased by a fifth in 2024, according to analysis by VulnCheck, with increased transparency and improved monitoring playing a role. Still, proactive measures are vital. Almost one in ...

The high-severity flaw can be exploited to enable remote execution of code or denial of service, Cisco says. Cisco reported Wednesday that a zero-day vulnerability impacting its IOS and IOS XE ...

Cisco has handed security teams one of the largest ever patching workloads affecting its firewall products, including fixes ...

A critical CrushFTP vulnerability now under exploitation in the wild has become mired in controversy and confusion. On March 31, the Shadowserver Foundation reported that exploitation activity was ...

Austin Gadient is CTO & cofounder of Vali Cyber. Vali’s product ZeroLock protects hypervisors and Linux systems from cyber attacks. Many organizations are familiar with patching, the standard practice ...

RapidFort Raises $42M Series A Led by Blue Cloud Ventures and Forgepoint Capital to Power the Next Generation of Software Supply Chain Defense RapidFort, the technical leader defining the next ...