code execution

Hackers are exploiting a critical vulnerability in the "Hunk Companion" plugin to install and activate other plugins with exploitable flaws directly…

The US State Department has offered a $10 million reward for Guan Tianfeng, who has been accused of developing and…

Microsoft today released updates to plug at least 70 security holes in Windows and Windows software, including one vulnerability that…

The zero-day (CVE-2024-49138), plus a worryingly critical unauthenticated RCE security vulnerability (CVE-2024-49112), are unwanted gifts for security admins this season.

Today is Microsoft's December 2024 Patch Tuesday, which includes security updates for 71 flaws, including one actively exploited zero-day vulnerability. [...]

​The Termite ransomware gang has officially claimed responsibility for the November breach of software as a service (SaaS) provider Blue…

A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been published, making it…

​Veeam released security updates today to address two Service Provider Console (VSPC) vulnerabilities, including a critical remote code execution (RCE)…

Over the past year, "Matrix" has used publicly available malware tools and exploit scripts to target weakly secured IoT devices…

The innocuously named Russian-sponsored cyber threat actor has combined critical and serious vulnerabilities in Windows and Firefox products in a…