News CISA says critical VMware RCE flaw now actively exploited
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has flagged a critical VMware vCenter Server vulnerabil...
Actively Exploited
News 
News CISA confirms active exploitation of four enterprise software bugs
The Cybersecurity and Infrastructure Security Agency (CISA) in the U.S. warned of active exploitation of four vulnerabil...
News Hackers exploit critical telnetd auth bypass flaw to get root
A coordinated campaign has been observed targeting a recently disclosed critical-severity vulnerability that has been pr...
News Fortinet confirms critical FortiCloud auth bypass not fully patched
Days after admins began reporting that their fully patched firewalls are being hacked, Fortinet confirmed it's working t...
News SmarterMail auth bypass flaw now exploited to hijack admin accounts
Hackers began exploiting an authentication bypass vulnerability in SmarterTools' SmarterMail email server and collaborat...
News Hackers breach Fortinet FortiGate devices, steal firewall configs
Fortinet FortiGate devices are being targeted in automated attacks that create rogue accounts and steal firewall configu...
News Cisco fixes Unified Communications RCE zero day exploited in attacks
Cisco has fixed a critical Unified Communications and Webex Calling remote code execution vulnerability, tracked as CVE-...
News Hackers exploit security testing apps to breach Fortune 500 firms
Threat actors are exploiting misconfigured web applications used for security training and internal penetration testing,...
News ハッカーがフォーティネットのFortiSIEMの重大な欠陥を悪用した攻撃を開始
FortinetのFortiSIEMに重大な脆弱性があり、概念実証済みのエクスプロイトコードが公開されているため、現在攻撃に悪用されている。 この脆弱性(CVE-2025-64155)を報告した侵入テスト会社Horizon3.aiのセキュリ...
News シスコ、11月から悪用されていたAsyncOSのゼロデイをついに修正
Ciscoは、2025年11月以降、Secure Email Gateway(SEG)およびSecure Email and Web Manager(SEWM)アプライアンスに対する攻撃で悪用されている最大深刻度のCisco AsyncOS...