New research has uncovered that publishers of over 100 Visual Studio Code (VS Code) extensions leaked access tokens that ...
Microsoft’s October 2025 Patch Tuesday fixes 183 flaws, including three exploited zero-days and two 9.9 CVSS bugs.
CVE-2023-42770 - An authentication bypass that arises as a result of the Sixnet RTU software listening to the same port ...
"Due to a deserialization vulnerability in SAP NetWeaver, an unauthenticated attacker could exploit the system through the ...
"Attackers are leveraging the unauthenticated command injection in ICTBroadcast via the BROADCAST cookie to gain remote code ...
The activity, per ReliaQuest, is the handiwork of a Chinese state-sponsored hacking group called Flax Typhoon, which is also ...
The attack, per ETH Zürich researchers Benedict Schlüter and Shweta Shinde, exploits AMD's incomplete protections that make ...
Researchers expose Discord webhook C2 in npm, PyPI, RubyGems; North Korean actors published 338 malicious npm packages with ...
Pixnapping side-channel can steal 2FA codes pixel-by-pixel on Android 13–16; CVE-2025-48561 patched Sept 2025 but workaround ...
Microsoft said it has revamped the Internet Explorer (IE) mode in its Edge browser after receiving "credible reports" in ...
Many organizations lack complete visibility into all JavaScript code executing on their pages. Scripts can dynamically load ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback