Home/Blog/Vulnerabilities

Vulnerabilities

Security vulnerabilities remain the most common entry point for cyber attacks. This section tracks newly discovered CVEs, zero-day vulnerabilities, and actively exploited flaws affecting enterprise infrastructure, cloud environments, and software supply chains.

81 articles

Industrial Malware Trend Shifts in Q3 2025 Raise CISO Concerns
vulnerabilities

Industrial Malware Trend Shifts in Q3 2025 Raise CISO Concerns

New Kaspersky findings reveal shifts in industrial malware activity in Q3 2025. CISOs must address growing OT threat diversity and regional variances.

Dec 26, 20255 min read
Read More
GitHub Malware Lures Researchers with Fake Exploits: Webrat Returns
vulnerabilities

GitHub Malware Lures Researchers with Fake Exploits: Webrat Returns

A new Webrat campaign disguises malware as fake exploit code on GitHub, targeting junior security professionals. CISOs must act to defend exposed endpoints.

Dec 24, 20255 min read
Read More
Inside Operation Sentinel: Cybercrime Crackdown Sweeps Africa
vulnerabilities

Inside Operation Sentinel: Cybercrime Crackdown Sweeps Africa

Operation Sentinel led to 574 arrests in 19 African nations, crippling cybercrime networks behind BEC, ransomware, and digital fraud. CISOs must understand the regional and global implications.

Dec 23, 20255 min read
Read More
Criminal IP Integrates with Cortex XSOAR to Elevate SOC Automation
vulnerabilities

Criminal IP Integrates with Cortex XSOAR to Elevate SOC Automation

Criminal IP and Palo Alto Networks Cortex XSOAR have joined forces to deliver AI-powered exposure intelligence directly into automated incident workflows. CISOs should prepare for faster incident response and higher fidelity decision-making with this new integration.

Dec 22, 20255 min read
Read More
Cisco Secure Email Zero-Day Exploited by China-Linked APT
vulnerabilities

Cisco Secure Email Zero-Day Exploited by China-Linked APT

Cisco's Secure Email appliances are under active zero-day exploitation by a China-linked APT. This article outlines critical response measures and threat implications.

Dec 19, 20256 min read
Read More
Critical Libbiosig, DiCoM, and Step-CA Flaws Expose Healthcare
vulnerabilities

Critical Libbiosig, DiCoM, and Step-CA Flaws Expose Healthcare

Cisco Talos' latest research exposes critical vulnerabilities in Libbiosig, Grassroot DiCoM, and Smallstep step-ca—putting medical and certificate systems at risk.

Dec 18, 20255 min read
Read More
CVE-2024-39431: Remote Code Exec via Vehicle Modem SoC
vulnerabilities

CVE-2024-39431: Remote Code Exec via Vehicle Modem SoC

A critical flaw in Unisoc's SoC enables remote code execution via vehicle modems. CISOs must assess risks in modern connected fleets immediately.

Dec 17, 20256 min read
Read More
Chrome Zero-Day Under Active Exploit – Patch Immediately
vulnerabilities

Chrome Zero-Day Under Active Exploit – Patch Immediately

A newly discovered zero-day in Chrome’s V8 engine is actively exploited in the wild. Google urges immediate patching to secure enterprise environments.

Dec 12, 20255 min read
Read More
December Patch Tuesday Fixes 3 Actively Exploited Zero-Days
vulnerabilities

December Patch Tuesday Fixes 3 Actively Exploited Zero-Days

Microsoft’s December Patch Tuesday addresses 57 vulnerabilities, including three zero-days—one of which is actively exploited to hijack Windows systems.

Dec 11, 20255 min read
Read More
1234567

Related Topics

RansomwareCloud SecurityAI SecurityData BreachAPTPhishingCritical InfrastructureSecurity Guides