Yubico Issues Security Advisory As 2FA Bypass Vulnerability Confirmed
Yubico has confirmed a partial 2FA bypass issue could impact some YubiKey customers—here’s what you need to know.
Rapid7, Tenable cut to Hold at Stifel on low priority of vulnerability management
Stifel downgraded the ratings of cybersecurity solution providers Rapid7 (NASDAQ:RPD) and Tenable (NASDAQ:TENB) to Hold ...
SecurityWeek6d
CISA Warns of Second BeyondTrust Vulnerability Exploited in Attacks
Attackers have been exploiting a second vulnerability in BeyondTrust’s remote management solutions, CISA warns.
Microsoft reveals macOS vulnerability that allowed System Integrity Protection bypass
Microsoft Threat Intelligence has revealed details of a now patched but previously unknown macOS vulnerability that could ...
KTrust Uncovers Critical Security Vulnerability in Kubernetes, Exposing Enterprise Cloud Applications to Risk
KTrust's security research has revealed critical attack techniques exploiting interconnected vulnerabilities in Kubernetes, ...
Security6d
KTrust uncovers critical security vulnerability in Kubernetes
These capabilities enable attackers to cause significant damage, from impersonating organizations in fraudulent activities to ...
Deep8h
Contrast Security Launches AVM to Enhance Application and API Security in Real-Time
AVM provides an alternative, allowing SecOps and DevOps teams to see what actual vulnerabilities exist in production ...
SecurityWeek11d
GFI KerioControl Firewall Vulnerability Exploited in the Wild
Threat actors are exploiting a recent GFI KerioControl firewall vulnerability that leads to remote code execution.
DataBreachToday12d
Cymulate Expands Exposure Management With CYNC Secure Deal
Cymulate's acquisition of CYNC Secure enhances its ability to bridge vulnerability identification and resolution. The deal ...
Ivanti discloses critical VPN vulnerability being actively targeted by hackers
According to Ivanti, CVE-2025-0282 is a so-called stack overflow vulnerability. Such exploits enable hackers to write more ...
The Hacker News4d
Google OAuth Vulnerability Exposes Millions via Failed Startup Domains
The San Francisco-based company said the issue has the potential to put millions of American users' data at risk simply by ...
Business Insider12d
Sweet Security Partners with Illustria to Offer Proactive Open-Source Supply Chain Risk Management
This new partnership introduces a cutting-edge Package Reputation feature into Sweet Security’s comprehensive Vulnerability ...