Hackers are actively targeting a messaging app used by federal agencies The app was also involved in the Signalgate scandal ...

CISA says two more vulnerabilities in the messaging application TeleMessage TM SGNL have been exploited in the wild.

Wing FTP Server vulnerability CVE-2025-47812 can be exploited for arbitrary command execution with root or system privileges.

CISA has warned U.S. federal agencies about attackers targeting a high-severity vulnerability in the Linux kernel's OverlayFS subsystem that allows them to gain root privileges.

The flaw is an authentication bypass by spoofing vulnerability affecting AMI MegaRAC SPx firmware, allowing attackers to trick the Redfish management interface into believing they are authorized ...

CISA says a maximum severity vulnerability in AMI's MegaRAC Baseboard Management Controller (BMC) software, which enables attackers to hijack and brick servers, is currently under active exploitation.

The NSA and CISA are urging developers to adopt programming languages that reduce the risks of memory safety vulnerabilities.

Tracked as CVE-2025-20309, the vulnerability was revealed on Tuesday and marked as Critical by the networking giant. Cisco ...

Security researchers uncovered “EchoLeak,” a zero-click flaw in Microsoft 365 Copilot, exposing sensitive data without user action. Microsoft has mitigated the vulnerability.

Today, Apple confirmed that a zero-day flaw used to deploy mercenary spyware onto journalists’ iPhones was quietly patched on iOS 18.3.1.

The former heads of the leading cybersecurity government agencies in the US and UK have called for an overhaul in threat actor naming conventions. Cyber attribution and threat actor naming conventions ...