Fortinet has patched a critical security flaw that it said has been exploited as a zero-day in attacks targeting FortiVoice enterprise phone systems. The vulnerability, […]
Critical 0-Day in Windows DWM Enables Privilege Escalation
Microsoft has disclosed a significant security vulnerability (CVE-2025-30400) affecting the Windows Desktop Window Manager (DWM) that is actively being exploited in the wild. The flaw, […]
Hacktivists Make Little Impact During India-Pakistan Conflict
While hacktivists claimed more than 100 successful attacks against Indian government, education, and military targets, the attacks were overblown in most cases and often did […]
Patch Tuesday for May: Five zero day vulnerabilities CISOs should focus on
CISOs need to pay attention to patching five zero day Windows vulnerabilities and two other holes with available proof-of-concept exploits among the 70 fixes issued […]
Researchers bypass Intel’s Spectre fixes — six years of CPUs at risk
Six years after Intel made architectural changes to its CPUs to mitigate speculative execution vulnerabilities, researchers have developed a new technique that can bypass some […]
12 AI terms you (and your flirty chatbot) should know by now
With the meteoric rise of generative AI (genAI) in the past few years, from data-scientist discussion groups to mainstream news coverage, one thing has become crystal clear: […]
4 critical leadership priorities for CISOs in the AI era
Everyone knows CISOs aren’t really working that hard in those cushy offices. Heck, they’re only thwarting compliance nightmares, blocking costly cyberattacks, protecting employees from predatory phishing emails, and now dodging […]
Chinese Actor Hit Taiwanese Drone Makers, Supply Chains
Tidrone concentrated on military entities and the satellite sector, using their associated service providers and ERP software to infect not just drones but all the […]
Windows Zero-Day Bug Exploited for Browser-Led RCE
Microsoft’s May 2025 Patch Tuesday update also contains four other actively exploited zero-day security vulnerabilities, two publicly known bugs, and 12 critical patches. ​The original […]
What Does EU’s Bug Database Mean for Vulnerability Tracking?
The EU cyber agency ENISA has launched its vulnerability database, the EUVD; security experts shared their thoughts regarding what this means for CVEs, as well […]