flaw

APT28 exploits Microsoft Office flaw in Operation Neusploit

AndyC 4 February 2026

APT28 exploits Microsoft Office flaw in Operation Neusploit Pierluigi Paganini February 03, 2026 Russia-linked APT28 is behind Operation Neusploit, exploiting...

OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

AndyC 3 February 2026

Ravie LakshmananFeb 02, 2026Vulnerability / Artificial Intelligence A high-severity security flaw has been disclosed in OpenClaw (formerly referred to as...

StrongestLayer: Top ‘Trusted’ Platforms are Key Attack Surfaces

Flaw in Broadcom Wi-Fi Chipsets Illuminates Importance of Wireless Dependability and Business Continuity

AndyC 2 February 2026

A wireless vulnerability affecting Broadcom Wi-Fi chipsets represents a timely warning for organizations that need always-on wireless access and a prime example of how...

SmarterTools patches critical SmarterMail flaw allowing code execution

AndyC 31 January 2026

SmarterTools patches critical SmarterMail flaw allowing code execution Pierluigi Paganini January 30, 2026 SmarterTools fixed two SmarterMail flaws, including a...

U.S. CISA adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog

AndyC 31 January 2026

U.S. CISA adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 30, 2026 The...

Nation-state and criminal actors leverage WinRAR flaw in attacks

AndyC 30 January 2026

Nation-state and criminal actors leverage WinRAR flaw in attacks Pierluigi Paganini January 29, 2026 Multiple threat actors exploited a now-patched...

U.S. CISA adds a flaw in multiple Fortinet products to its Known Exploited Vulnerabilities catalog

AndyC 29 January 2026

U.S. CISA adds a flaw in multiple Fortinet products to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 28, 2026...

Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas

AndyC 28 January 2026

Ravie LakshmananJan 27, 2026Vulnerability / Cloud Security A critical security flaw has been disclosed in Grist‑Core, an open-source, self-hosted version...

ISO 27001:2013 vs 2022 – A Quick Comparison Guide

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog

AndyC 25 January 2026

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 24,...

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

AndyC 24 January 2026

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061) Pierluigi Paganini January 24, 2026 Critical telnetd flaw CVE-2026-24061 (CVSS 9.8)...

Critical GNU InetUtils telnetd Flaw Lets Attackers Bypass Login and Gain Root Access

AndyC 23 January 2026

Ravie LakshmananJan 22, 2026Vulnerability / Linux A critical security flaw has been disclosed in the GNU InetUtils telnet daemon (telnetd)...

U.S. CISA adds a flaw in Cisco Unified Communications products to its Known Exploited Vulnerabilities catalog

AndyC 23 January 2026

U.S. CISA adds a flaw in Cisco Unified Communications products to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 22,...

SmarterMail Auth Bypass Exploited in the Wild Two Days After Patch Release

AndyC 23 January 2026

Ravie LakshmananJan 22, 2026Vulnerability / Email Security A new security flaw in SmarterTools SmarterMail email software has come under active...

Security Blogs

Zoom fixed critical Node Multimedia Routers flaw

AndyC 22 January 2026

Zoom fixed critical Node Multimedia Routers flaw Pierluigi Paganini January 21, 2026 Zoom addressed a critical security vulnerability, tracked as...

ACME flaw in Cloudflare allowed attackers to reach origin servers

AndyC 22 January 2026

ACME flaw in Cloudflare allowed attackers to reach origin servers Pierluigi Paganini January 21, 2026 Cloudflare fixed a flaw in...

flaw

APT28 exploits Microsoft Office flaw in Operation Neusploit

OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link

SmarterTools patches critical SmarterMail flaw allowing code execution

U.S. CISA adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog

Nation-state and criminal actors leverage WinRAR flaw in attacks

U.S. CISA adds a flaw in multiple Fortinet products to its Known Exploited Vulnerabilities catalog

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

Critical GNU InetUtils telnetd Flaw Lets Attackers Bypass Login and Gain Root Access

U.S. CISA adds a flaw in Cisco Unified Communications products to its Known Exploited Vulnerabilities catalog

SmarterMail Auth Bypass Exploited in the Wild Two Days After Patch Release

Zoom fixed critical Node Multimedia Routers flaw

ACME flaw in Cloudflare allowed attackers to reach origin servers

Lessons for life: Why children’s data is a long-term identity risk

This month in security with Tony Anscombe – May 2026 edition

ESET APT Activity Report Q4 2025–Q1 2026

What to consider before asking an AI chatbot for health advice

BTMOB: A stealthy RAT burrowing deep into Android devices

Foul play: Fake FIFA websites target soccer fans looking for World Cup tickets, merchandise

Donate Bitcoin to this address

Donate Ethereum to this address

Sophos Workspace Protection update

Sophos Workspace Protection update

Sophos Workspace Protection update

Sophos Workspace Protection update

Sophos Workspace Protection update

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed