The US government has issued an alert on the Interlock ransomware, which targets organizations via drive-by download attacks.

The first high-severity bug, CVE-2025-8027, impacts the browser’s JavaScript engine, which only writes partial return values ...

Sophos has patched five vulnerabilities in Sophos Firewall that could allow remote attackers to execute arbitrary code.

The Lumma Stealer is back after Microsoft and law enforcement took action to significantly disrupt the malware’s ...

Cisco says it is aware of attempted exploitation of critical ISE vulnerabilities leading to unauthenticated remote code ...

Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell ...

Dell confirms the compromise of a demo environment containing synthetic data after hackers leak allegedly stolen information.

Microsoft warned SharePoint Server users of a vulnerability dubbed ToolShell in the software that was assigned CVE-2025-53770 ...

Security Operations: 10 ways modern environments are undermining SOC effectiveness—and what enterprises must do to reclaim ...

Vulnerabilities, including ones allowing full control over a device, have been discovered and patched in Helmholz REX 100 ...

CISA has added two recent SysAid flaws, CVE-2025-2776 and CVE-2025-2775, to its Known Exploited Vulnerabilities (KEV) catalog.

British cybersecurity solutions provider Darktrace has announced the acquisition of network traffic visibility firm Mira Security. Founded in 2013, Darktrace leverages proprietary AI models to deliver ...