After years of neglect, organizations are investing in vulnerability management programs to address business risk. A dozen ...

The US Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2025-31161 to its Known Exploited ...

The data breach that Oracle first denied has now been confirmed The company is reaching out to affected customers Oracle is facing an alleged lawsuit Oracle has started notifying customers about the ...

The Oracle Cloud attack is on pace to be one of 2025's biggest data breaches, possibly on the scale of the MOVEit breach if ...

Two CVEs now exist for an actively exploited CrushFTP vulnerability and much of the security industry is using the ‘wrong one ...

Successful exploitation could allow attackers to steal data, install malware, or take full control over affected big data ...

A critical vulnerability in Apache Parquet can be exploited to execute arbitrary code remotely, leading to complete system compromise.

The National Security Agency sent a bulletin in February warning of Russian hackers trying to access encrypted conversations ...

The growth of these applications throughout the enterprise makes data backup and recovery capabilities essential.

Despite Oracle denying a breach of its Oracle Cloud federated SSO login servers and the theft of account data for 6 million ...

Using Microsoft Security Copilot to expedite the discovery process, Microsoft has uncovered several vulnerabilities in ...

There is a security gap in the CrushFTP data transfer software that gives attackers unauthorized access from the network.