Common failures in security that enable vulnerabilities to be exploited, as well as the politicisation of technology leading to its…
The National Institute of Standards and Technology is reevaluating its role in analyzing software vulnerabilities as it tries to meet…
A new security feature for Teams Calling now alerts users to suspicious external calls that try to impersonate trusted organizations….
TrustAsia has revoked 143 SSL/TLS certificates following the discovery of a critical vulnerability in its LiteSSL ACME service. The flaw,…
Halo Security, a leading provider of external attack surface management and penetration testing services, today announced it has successfully achieved…
Ravie LakshmananJan 23, 2026Vulnerability / Software Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added four security…
The UK government is facing scrutiny for failing to do its due diligence on the environmental impacts of hyperscale datacentres,…
“Vibe coding” — using AI models to help write code — has become part of everyday development for a lot…
A sophisticated macOS malware called MacSync has emerged as a dangerous new threat targeting cryptocurrency users through deceptive social engineering…
Fortinet has officially confirmed active exploitation of critical FortiCloud single sign-on (SSO) authentication bypass vulnerabilities affecting multiple enterprise security appliances….
Node.js has updated its HackerOne vulnerability disclosure program to require a minimum Signal score of 1.0, aiming to reduce low-quality…
Microsoft confirmed today that Outlook mobile may crash or freeze when launched on iPad devices due to a coding error….