Tag: Vulnerability Management
-
America’s blind spot: As drone production surges globally, U.S. counter-drone policy lags far behind
When Americans look to the skies on July 4th, we expect celebration—fireworks, light shows, and the kind of awe that reflects our …
-
Widespread WordPress site takeover possible with plugin flaw
Threat actors could leverage the flaw — which stems from inadequate value sanitization conducted by the Forminator plugin’s function for …
-
Actively exploited Chrome zero-day addressed
Updates have been issued by Google to resolve an actively exploited zero-day vulnerability impacting its Chrome browser, tracked as …
-
Remote attacks likely with severe Microsens vulnerabilities
SecurityWeek reports that organizations, particularly those in critical infrastructure sectors, could be remotely compromised through the …
-
Trio of Bluetooth chipset flaws could allow snooping, data theft
Highly sophisticated threat actors could eavesdrop or pilfer sensitive data from several audio devices using Airoha systems on a chip …
-
Attacks involving critical Citrix NetScaler bug underway
Threat actors were observed by ReliaQuest to have been leveraging the recently disclosed critical Citrix NetScaler Gateway vulnerability, …
-
Aflac among victims in cyberattacks targeting US insurance industry
Cyberattacks on insurance companies in the U.S. are continuing as Aflac reported to the Securities and Exchange Commission (SEC) on June 20 …
-
How the ‘Confused Deputy Problem’ has made a comeback
As the Chief Security Advisor at BeyondTrust, Morey J. Haber is the lead identity and technical evangelist at the …
-
House Dems call for review of U.S. government cybersecurity programs
The ranking members of two House committees are calling on the U.S. government to outline the way its cybersecurity programs …
-
GAO study on federal vulnerability tracking efforts urged
CyberScoop reports that House Homeland Security Committee ranking member Rep. Bennie Thompson, D-Miss., and House Science and Technology …
-
CoreDNS addresses flaw enabling server crashes
Updates have been issued by CoreDNS to fix a high-severity flaw in its DNS-over-QUIC implementation, tracked as CVE-2025-47950, which could …
●●●