CISA has added fresh CentreStack and Windows CLFS vulnerabilities to the Known Exploited Vulnerabilities catalog.

CISA has also picked up on the news, adding the bug to its Known Exploited Vulnerabilities Catalog (KEV). This means that Federal Civilian Executive Branch (FCEB) agencies have a three-week deadline ...

Uncle Sam dubbed the latest software nasty Resurge, and warned it infects devices by exploiting CVE-2025-0282 - a critical ...

A recently disclosed critical security flaw impacting CrushFTP has been added by the U.S. Cybersecurity and Infrastructure ...

A directive against CISA and its former director Christopher Krebs raises concerns over the agency’s neutrality, operational stability, and future role in public-private cyber defense.

Hackers exploited a vulnerability in Gladinet CentreStack's secure file-sharing software as a zero-day since March to breach ...

The authentication bypass vulnerability, CVE-2025-31161, was added to the Cybersecurity and Infrastructure Security Agency’s (CISA) Known Exploited Vulnerabilities (KEV) catalog on April 7. “These ...

Attacks on Ivanti's ICS have been known since the beginning of January. CISA has analyzed the malware that attackers have ...

Microsoft patched 126 vulnerabilities including actively exploited CVE-2025-29824, leaving Windows 10 users exposed.

Earlier this month, three critical vulnerabilities in Ivanti Endpoint Manager came under attack. According to CISA, Resurge is similar to SpawnChimera, a variant of the Spawn malware family that ...

CVE-2025-22457 is a critical stack buffer-overflow vulnerability. Ivanti had initially assessed as a low-level product bug ...

Application security (AppSec) would not have existed for the past 25 years without the Common Vulnerabilities and Exposures ...