CISA Warns of Actively Exploited Critical Oracle Identity Manager Zero-Day Vulnerability
Nov 22, 2025Ravie LakshmananZero-Day / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical...
software
Building checksec without boundaries with Checksec Anywhere
Since its original release in 2009, checksec has become widely used in the software security community, proving useful in...
QNAP fixed multiple zero-days in its software demonstrated at Pwn2Own 2025
QNAP fixed multiple zero-days in its software demonstrated at Pwn2Own 2025 Pierluigi Paganini November 10, 2025 QNAP patched seven zero-days...
Anchore Enterprise 5.23: CycloneDX VEX and VDR Support
Anchore Enterprise 5.23 adds CycloneDX VEX and VDR support, completing our vulnerability communication capabilities for software publishers who need...
JFrog Uncovers Severe React Vulnerability Threat to Software Supply Chains
The security research team at JFrog, a provider of a platform for building and deploying software, have discovered a...
DataDome Earns Three New AWS Competencies
We are happy to share that DataDome has earned three new Amazon Web Services (AWS) Software Competencies: Travel &...
Crooks exploit RMM software to hijack trucking firms and steal cargo
Crooks exploit RMM software to hijack trucking firms and steal cargo Pierluigi Paganini November 04, 2025 Hackers target trucking firms...
Ransomware Defense Using the Wazuh Open Source Platform
Ransomware is malicious software designed to block access to a computer system or encrypt data until a ransom is paid....
Your AI Agent Is Now a Target for Email Phishing
Email security has always been a cat-and-mouse game. Viruses are invented, and antivirus software is invented to catalog known viruses...
Veeam Sets Data Graph Course Following Acquisition of Securiti AI
Veeam Software plans to expand the scope of its offerings into the realm of data security posture management (DSPM)...
PhantomRaven Malware Found in 126 npm Packages Stealing GitHub Tokens From Devs
Oct 30, 2025Ravie LakshmananDevSecOps / Software Security Cybersecurity researchers have uncovered yet another active software supply chain attack campaign targeting...
Check Point Allies with NVIDIA to Secure AI Platforms
Check Point Software Technologies Ltd. today revealed it has developed a cybersecurity platform to secure artificial intelligence (AI) factories...
How We (Almost) Found Chromium’s Bug via Crash Reports to Report URI
27 October 2025 Tracking down bugs in software is a pain that all of us who write code must bear....
US considers new software export curbs on China, threatening global tech supply chains
“With software being the cornerstone from design, development to management of hardware systems globally, further tighter export controls will escalate...
New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login
Oct 15, 2025Ravie Lakshmanan Enterprise Software / Vulnerability SAP has rolled out security fixes for 13 new security issues, including...
![Sectigo New Public Roots and Issuing CAs Hierarchy [2025 Migration Guide]](https://certera.com/blog/wp-content/plugins/wp-postratings/images/stars/rating_on.gif)