Vulnerability

Hewlett Packard Enterprise (HPE) disclosed eight critical vulnerabilities in its StoreOnce data backup and deduplication platform, with the most severe…

AutomationDirect’s MB-Gateway devices, widely deployed in critical infrastructure, are affected by a maximum-severity missing authentication vulnerability (CVE-2025-36535), enabling remote…

The Node.js project disclosed CVE-2025-23166, a high-severity vulnerability in its core cryptographic operations that enables remote attackers to crash…

Security researchers identified three critical vulnerabilities in Google’s Gemini AI assistant, dubbed the 'Trifecta,' which could have…

Grafana Labs disclosed a critical vulnerability (CVE-2025-41115) in its Grafana Enterprise product, enabling privilege escalation or impersonation of administrators when…

A critical security vulnerability was discovered in GoSign Desktop, a widely used electronic signature solution by Tinexta InfoCert. The flaws…

The Louvre Museum in Paris faced a digital security lapse exposed by a physical burglary, where thieves stole eight jewelry…

Microsoft disclosed CVE-2025-59499, a critical SQL injection vulnerability in SQL Server that enables authenticated attackers to escalate privileges remotely over…

The Louvre Museum in Paris suffered a $100 million jewel heist due to severe cybersecurity and physical security lapses. Investigations…

Tenable Research uncovered seven critical security flaws in OpenAI’s ChatGPT (including GPT-4o and GPT-5), enabling attackers to steal private…

Threat actors are actively exploiting CVE-2025-54236 (CVSS 9.1), a critical improper input validation vulnerability in Adobe Commerce and Magento…

Maryland launched a Vulnerability Disclosure Program (VDP) to encourage ethical hackers to report security flaws in state systems before malicious…