Critical VMware vCenter RCE Flaw CVE-2024-37079 Under Active Attack
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical VMware vCenter Server vulnerability, tracked as CVE-2024-37079, to […]
cloud security
IBM API Connect Hit by CVE-2025-13915 Authentication Bypass Bug
IBM has released an urgent security warning after discovering a critical vulnerability in IBM API Connect that could allow attackers
CVE-2025-68613: Critical n8n Bug Enables Arbitrary Code Execution
A critical security flaw in n8n, a popular workflow automation platform, has been disclosed, putting thousands of organizations at serious
Microsoft Strengthens Entra ID Login Security with 2026 CSP Rules
Microsoft has announced a major security upgrade coming to Microsoft Entra ID sign-ins in 2026. The company will update its
Oracle Zero-Day (CVE-2025-61757) Under Active Exploitation, CISA Issues Alert
CISA has issued an urgent warning about a critical zero-day vulnerability in Oracle Identity Manager, a widely used enterprise identity
Grafana Fixes High-Risk CVE-2025-41115 Vulnerability in SCIM Module
Grafana has released an urgent set of security patches to fix a critical vulnerability rated CVSS 10.0, the highest severity
Cloudflare’s Worst Outage in 6 Years Disrupts Global Internet Traffic
Cloudflare, one of the world’s largest internet infrastructure providers, faced its most serious outage in more than six years on
New VMware Vulnerability CVE-2025-41244 Under Active Exploitation
CISA has issued a serious warning after adding a new VMware vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. The
CVE-2025-10725: Red Hat OpenShift AI Bug Exposes Hybrid Cloud to Attack
A security flaw in Red Hat OpenShift AI has raised serious concerns for organizations running artificial intelligence workloads in hybrid
Microsoft Entra Workaround Helps Solve Outlook Encrypted Email Bug
Microsoft has acknowledged a growing issue affecting users of the classic Outlook email client when trying to open encrypted emails
Microsoft Fixes Critical Entra ID Flaw CVE-2025-55241 Allowing Global Admin Impersonation
Microsoft has released a patch for a critical security vulnerability in Entra ID (formerly Azure Active Directory) that could have
Salesforce Data Breach: Salesloft OAuth Exploit via Drift AI App
A major cybersecurity incident has shaken the SaaS ecosystem as hackers exploited a security gap in Salesloft’s Drift AI chat
Docker Desktop Vulnerability CVE-2025-9074 Rated 9.3 CVSS: Update Immediately
Docker has released an urgent security update to fix a critical vulnerability in Docker Desktop for Windows and macOS. The
Hackers Exploit VPS to Bypass Security and Compromise SaaS Accounts
Experts have warned that hackers are increasingly using virtual private servers (VPS) to break into software-as-a-service (SaaS) accounts. A new
CVE-2025-53786: Exchange Server Flaw Lets Hackers Access Cloud Without Detection
Microsoft has issued a high-severity security warning about a critical vulnerability affecting on-premise Exchange Servers used in hybrid cloud setups.