Business-grade email server software SmarterMail just patched a maximum-severity vulnerability that allowed threat actors to ...

December 2025 was a brutal reality check for security teams. While most were winding down for the holidays, threat actors weaponized a tectonic shift in the landscape, headlined by the... The post Top ...

A new report out today from artificial intelligence security startup Cyata Security Ltd. details a critical remote code execution vulnerability in Cursor Inc.’s integrated development environment that ...

The explosive, easy-to-trigger vulnerability was exploited within hours of disclosure, exposing the risks of default ...

WatchGuard warns that the critical Firebox vulnerability CVE-2025-14733 has been exploited in attacks for remote code ...

AI coding agents are highly vulnerable to zero-click attacks hidden in simple prompts on websites and repositories, a ...

WatchGuard is in emergency patch mode after confirming that a critical remote code execution flaw in its Firebox firewalls is under active attack.

MongoDB has warned IT admins to immediately patch a high-severity memory-read vulnerability that may be exploited by ...

In early December 2025, the React core team disclosed two new vulnerabilities affecting React Server Components (RSC). These issues – Denial-of-Service and Source Code Exposure were found by security ...

IT managers who manage their IT with Barracuda RMM – formerly known as Managed Workplace – should urgently install the available Hotfix 2025.1.1 if they haven't already done so. It closes several ...

Because it was under attack before a patch was made available by WatchGuard on December 18, this makes CVE-2025-14733 a bona fide zero-day vulnerability. The first job for admins should therefore be ...