CISA flags Microsoft SharePoint flaws under active attack by Chinese hackers. U.S. agencies must patch by July 23 ...

The cybersecurity firm noted that the vulnerabilities could allow attackers to inject unsafe XML entities into the web ...

Cisco confirms active exploitation of critical ISE bugs, exposing systems to remote root access. Urgent patching advised.

Microsoft links SharePoint attacks to three China-based groups; flaws allow code execution and data theft on unpatched ...

Active SharePoint exploits since July 7 target governments and tech firms globally, risking key theft and persistent access.

The China-linked cyber espionage group tracked as APT41 has been attributed to a new campaign targeting government IT ...

The cybersecurity vendor has also classified it as a high-severity, high-urgency threat, urging organizations running ...

Hackers bypass FIDO keys using spoofed portals and QR codes, exposing MFA weaknesses and risking user accounts.

Further dissection has determined that over 3,500 websites have been ensnared in the sprawling illicit crypto mining effort, ...

HPE fixed two flaws in Instant On Access Points that could allow admin access and command injection. Patch now to stay secure ...

First detected in July 2024, DCHSpy is assessed to be the handiwork of MuddyWater, an Iranian nation-state group tied to MOIS ...

The financially motivated threat actor known as EncryptHub (aka LARVA-208 and Water Gamayun) has been attributed to a new ...