Security News

Filter by:

Critical Cisco ISE bug can let attackers run commands as root

Cisco has fixed two critical Identity Services Engine (ISE) vulnerabilities that can let attackers with read-only admin privileges bypass authorization and run commands as root. [...]
Bleepingcomputer 7 Feb 2025 335 Views

7-Zip 0-day was exploited in Russia’s ongoing invasion of Ukraine

Vulnerability stripped MotW tag Windows uses to flag Internet-downloaded files.
Ars Technica 6 Feb 2025 257 Views

AMD fixes bug that lets hackers load malicious microcode patches

​AMD has released mitigation and firmware updates to address a high-severity vulnerability that can be exploited to load malicious CPU microcode on unpatched devices. [...]
Bleepingcomputer 6 Feb 2025 484 Views

Google releases responsible AI report while removing its anti-weapons pledge

The company's annual reflection on safe AI development comes amid shifting guidance around military AI.
ZDnet 6 Feb 2025 268 Views

Not Gouda-nough: Google removes AI-generated cheese error from Super Bowl ad

Unlike Google search, AI writing assistant doesn't even cite its sources.
Ars Technica 6 Feb 2025 253 Views

Credential Theft Becomes Cybercriminals' Favorite Target

Researchers measured a threefold increase in credential stealing between 2023 and 2024, with more than 11.3 million such thefts last year.
Dark Reading 5 Feb 2025 337 Views

Zyxel won’t patch newly exploited flaws in end-of-life routers

Zyxel has issued a security advisory about actively exploited flaws in CPE Series devices, warning that it has no plans to issue fixing patches and urging users to move to actively supported models. [...]
Bleepingcomputer 5 Feb 2025 466 Views

AI Malware Dressed Up as DeepSeek Packages Lurk in PyPi

Adversaries looking to ride the DeepSeek interest wave are taking advantage of developers in a rush to deploy the new technology, by using AI-generated malware against them.
Dark Reading 4 Feb 2025 405 Views

Microsoft Sets End Date for Defender VPN

Though Windows, iOS, and macOS users won't need to make any changes, Android users are advised to remove their Defender VPN profiles.
Dark Reading 4 Feb 2025 435 Views

Hackers exploit critical unpatched flaw in Zyxel CPE devices

Hackers are exploiting a critical command injection vulnerability in Zyxel CPE Series devices that is currently tracked as CVE-2024-40891 and remains unpatched since last July.
Bleeping Computer 3 Feb 2025 496 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY