News

The Hacker News12h
CyberArk and HashiCorp Flaws Enable Remote Vault Takeover Without Credentials
Cybersecurity researchers have discovered over a dozen vulnerabilities in enterprise secure vaults from CyberArk and ...
CISA orders fed agencies to patch new Exchange flaw by Monday
CISA has issued an emergency directive ordering all Federal Civilian Executive Branch (FCEB) agencies to mitigate a critical ...
Inside the US Government's Unpublished Report on AI Safety
The National Institute of Standards and Technology conducted a groundbreaking study on frontier models just before Donald ...
SonicWall finds no SSLVPN zero-day, links ransomware attacks to 2024 flaw
SonicWall says that recent Akira ransomware attacks exploiting Gen 7 firewalls with SSLVPN enabled are exploiting an older ...
The Register on MSN2d
CISA releases malware analysis for Sharepoint Server attack
Indications of compromise and Sigma rules report for your security scanners amid ongoing 'ToolShell' blitz CISA has published ...
SecurityWeek2d
Black Hat USA 2025 – Summary of Vendor Announcements (Part 3)
Many companies are showcasing their products and services this week at the 2025 edition of the Black Hat conference in Las ...
CSO Online3d
Researchers uncover RCE attack chains in popular enterprise credential vaults
Open-source credential management systems HashiCorp Vault and CyberArk Conjur had flaws enabled remote code execution among ...