vulnerability - Secure Bulletin

MITRE Signals Critical Risk to CVE Program as Federal Funding Expires

15 April 2025

The cybersecurity world faces a significant challenge as the Common Vulnerabilities and Exposures (CVE) program, a cornerstone of global vulnerability…

Malware

Malicious NPM packages targeting PayPal users: a recap analysis

12 April 2025

FortiGuard Labs recently uncovered a series of malicious NPM packages designed to steal sensitive information from compromised systems. These packages,…

Vulnerability

Surge in Palo Alto Networks scanner activity

1 April 2025

GreyNoise has detected a significant surge in login scanning activity aimed at Palo Alto Networks PAN-OS GlobalProtect portals. In the…

Vulnerability

Critical Remote Code Execution vulnerability discovered in GiveWP WordPress Plugin (CVE-2025-0912)

5 March 2025

A critical security vulnerability, identified as CVE-2025-0912, has been discovered in the GiveWP WordPress donation plugin. This flaw potentially exposes…

Vulnerability

The rising threat of ADFS spoofing attacks

5 February 2025

In a recent alarming development, hackers have launched a sophisticated phishing campaign targeting Microsoft Active Directory Federation Services (ADFS) to…

Vulnerability

Critical vulnerabilities in Netgear routers demand immediate attention

4 February 2025

On February 4, 2025, Netgear issued a crucial alert regarding two significant vulnerabilities impacting several of its WiFi router models.…

Vulnerability

A critical race condition vulnerability (CVE-2025-24118) in Apple’s macOS kernel has been discovered

3 February 2025

A critical vulnerability has been identified in the macOS kernel (XNU), designated as CVE-2025-24118, which poses significant risks for users…

DeepSeek: the rise of China’s AI challenger and its implications for the cyber landscape

28 January 2025

In recent weeks, a new player in the artificial intelligence (AI) space has taken the tech world by storm: DeepSeek,…

MITRE Signals Critical Risk to CVE Program as Federal Funding Expires

Malicious NPM packages targeting PayPal users: a recap analysis

Surge in Palo Alto Networks scanner activity

Critical Remote Code Execution vulnerability discovered in GiveWP WordPress Plugin (CVE-2025-0912)

The rising threat of ADFS spoofing attacks

Critical vulnerabilities in Netgear routers demand immediate attention

A critical race condition vulnerability (CVE-2025-24118) in Apple’s macOS kernel has been discovered

DeepSeek: the rise of China’s AI challenger and its implications for the cyber landscape

You missed

SuperCard X: exposing a MaaS for NFC Relay fraud operation

MITRE Signals Critical Risk to CVE Program as Federal Funding Expires

Malicious NPM packages targeting PayPal users: a recap analysis

Malicious VSCode extensions: a growing threat to developers

Secure Bulletin

Tag: vulnerability

You missed