Yubico Issues Security Advisory As 2FA Bypass Vulnerability Confirmed
Yubico has confirmed a partial 2FA bypass issue could impact some YubiKey customers—here’s what you need to know.
Rapid7, Tenable cut to Hold at Stifel on low priority of vulnerability management
Stifel downgrades cybersecurity stocks Rapid7 and Tenable to Hold, citing cautious stance on vulnerability management.
SecurityWeek5d
CISA Warns of Second BeyondTrust Vulnerability Exploited in Attacks
Attackers have been exploiting a second vulnerability in BeyondTrust’s remote management solutions, CISA warns.
KTrust Uncovers Critical Security Vulnerability in Kubernetes, Exposing Enterprise Cloud Applications to Risk
KTrust's security research has revealed critical attack techniques exploiting interconnected vulnerabilities in Kubernetes, ...
Microsoft reveals macOS vulnerability that allowed System Integrity Protection bypass
Microsoft Threat Intelligence has revealed details of a now patched but previously unknown macOS vulnerability that could ...
Deep2h
Contrast Security Launches AVM to Enhance Application and API Security in Real-Time
AVM provides an alternative, allowing SecOps and DevOps teams to see what actual vulnerabilities exist in production ...
Security6d
KTrust uncovers critical security vulnerability in Kubernetes
These capabilities enable attackers to cause significant damage, from impersonating organizations in fraudulent activities to ...
SecurityWeek10d
GFI KerioControl Firewall Vulnerability Exploited in the Wild
Threat actors are exploiting a recent GFI KerioControl firewall vulnerability that leads to remote code execution.
Ivanti discloses critical VPN vulnerability being actively targeted by hackers
According to Ivanti, CVE-2025-0282 is a so-called stack overflow vulnerability. Such exploits enable hackers to write more ...
Business Insider11d
Sweet Security Partners with Illustria to Offer Proactive Open-Source Supply Chain Risk Management
This new partnership introduces a cutting-edge Package Reputation feature into Sweet Security’s comprehensive Vulnerability ...
The Hacker News4d
Google OAuth Vulnerability Exposes Millions via Failed Startup Domains
The San Francisco-based company said the issue has the potential to put millions of American users' data at risk simply by ...
Stratejm Launch First MSSP Offering in Canada Featuring Nozomi Networks Vantage Cloud Platform for Unified Security Monitoring and Risk Management
Nozomi Networks, a leader in operational technology (OT) and Internet of Things (IoT) cybersecurity, and Stratejm, a Bell ...