News about security failures, exploits and vulnerabilities in systems
Cisco has alerted network managers: a critical vulnerability of authentication omission in Cisco Catalyst SD-WAN, registered as CVE-2026-20127, has been used in zero-day attacks t…
Cybersecurity researchers have discovered serious failures in Claude Code, the Anthropic-driven programming assistant, which allow from remote command execution to API key theft. …
Google, along with Mandiant and other partners, managed to deactivate a cyber-espionage campaign that had been operating since at least 2023 and which, according to its research, …
A new turn in the tactics of cybercriminals replaces security teams on guard: according to a recent report, the collective known as Scattered LAPSUS $Hunters (SLH) would be delibe…
A small tool recently emerged in the developer community to lighten daily tasks: cleaning the mail, managing calendars, ordering ideas and letting an automated assistant do the re…
Security researchers have dug up a sophisticated campaign aimed at ASP.NET application developers who, far from looking for noisy infections on programmers' teams, aim at a more v…
A critical vulnerability in several models of Zyxel routers and network devices has forced the company to publish security updates this month. The failure, recorded as CVE-2025-13…
That more than half of national security organizations continue to rely on manual processes to move sensitive information is news that should turn all alerts on ministers, heads o…
The Foreign Assets Control Office of the United States Treasury Department (OFAC) has taken a hit that combines economic espionage, cybercrime and internal risks: it sanctioned a …
