Latest News
Stay up to date with the latest posts and updates
Alerts
-
Vulnerability Summary for the Week of June 1, 2026
High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info 10Web–Photo Gallery by 10Web Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability…
4 min read
-
How Threat Actors Are Abusing Microsoft Entra ID Self-Service Password Reset (SSPR) to Compromise Cloud Environments
Threat actors are increasingly leveraging Microsoft Entra ID’s Self-Service Password Reset (SSPR) feature to conduct highly targeted, identity-driven attacks. Advanced threat groups, such as Storm-2949, have demonstrated how…
4 min read
-
Vulnerability Summary for the Week of May 25, 2026
High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info 1Panel-dev–MaxKB MaxKB is an open-source AI assistant for enterprise. Prior to 2.9.0, MaxKB’s webhook trigger endpoint (/api/trigger/v1/webhook/{trigger_id})…
4 min read
-
Supply Chain Compromises Impact Nx Console and GitHub Repositories
CISA is prioritizing the response to multiple emerging software supply chain intrusion campaigns targeting developer ecosystems Continuous Integration/Continuous Development (CI/CD) pipelines. These recent incidents, including the GitHub compromise…
4 min read
-
Vulnerability Summary for the Week of May 18, 2026
High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info 10-Strike–Network Inventory Explorer 10-Strike Network Inventory Explorer 8.54 contains a stack-based buffer overflow vulnerability in the registration…
4 min read
-
Emerging Cyber Threat Trends Global SOC Teams Should Prepare For
Cybercriminals are leveraging new technologies, targeting new industries, and exposing operational weaknesses. The evolving threat landscape spans healthcare, finance, government, manufacturing, education, and critical infrastructure. No industry is…
4 min read
