Sometimes a breach doesn’t kick down the front door. It just changes the name on the badge.

VMware has released updates for Aria Automation, its multi-cloud infrastructure automation platform for public, private and hybrid clouds, to fix a critical vulnerability that could allow ...

A new security loophole has been found in Spring Security’s latest versions. Tracked as CVE-2023-34034, the flaw has a CVSS score of 9.8. Spring Security is an integral part of the Java-based Spring ...

The Akira ransomware gang is actively exploiting CVE-2024-40766, a year-old critical-severity access control vulnerability, to gain unauthorized access to SonicWall devices. A new vulnerability in ...

Industrial manufacturer Siemens is encouraging users running devices that use its Ruggedcom protocol to apply firmware updates this week. The updates resolve a serious and remotely exploitable ...

A zero-day vulnerability in SonicWall’s Secure Mobile Access (SMA) 1000 was reportedly exploited in the wild in a chained attack with CVE-2025-23006.Key takeaways:CVE-2025-40602 is a local privilege ...

TeamViewer has issued an emergency patch to fix a bug which could allow attackers to gain control of other PCs when in desktop sessions. The vulnerability first came to light on on Monday, when Reddit ...

Legacy systems, often based on keyfob or keycard readers, are becoming increasingly redundant. As businesses increasingly migrate to digital platforms, the modern office has become a hotbed of ...