A critical flaw in legacy D-Link DSL routers lets unauthenticated attackers run commands and hijack DNS, with active ...

Threat actors are exploiting CVE-2026-0625, a critical zero-day vulnerability in discontinued D-Link devices for remote code ...

Max-severity OneView hole joins a PowerPoint bug that should've been retired years ago CISA has added a pair of security ...

Analysis of a recent attack targeting VMware ESXi vulnerabilities from March 2025 revealed an exploit developed a year before ...

No reports of active exploitation … yet Cisco patched a bug in its Identity Services Engine (ISE) and ISE Passive Identity ...

Researchers found Chinese-linked attackers abused SonicWall VPN access and VMware ESXi zero-day flaws to escape VMs and gain ...

Exploitation of CVE-2025-37164 can enable remote code execution on HPE's IT infrastructure management platform, leading to ...

A recently disclosed vulnerability affecting MongoDB instances has been reportedly exploited in the wild. Exploit code has been released for this flaw dubbed MongoBleed.Key takeaways:MongoBleed is a ...

Over 10,000 Internet-exposed Fortinet firewalls are still vulnerable to attacks exploiting a five-year-old two-factor ...

Infosecurity has selected five of the most significant vulnerability exploitation campaigns of 2025 that led to major software supply chain incidents ...

Cisco has patched an ISE vulnerability with public proof-of-concept exploit code that can be abused by attackers with admin ...

Microsoft Says Ransomware Groups Are Exploiting the Newly-Patched VMware ESXi Flaw Your email has been sent A vulnerability in the ESXi hypervisor was patched by VMware last week, but Microsoft has ...