IT admins will be busy this month patching Microsoft software and apps, but not nearly as busy as they were in January.

CISA adds an actively exploited SolarWinds Web Help Desk RCE flaw to KEV, ordering federal agencies to patch by February 2026.

CISA warns that a fresh critical-severity SolarWinds vulnerability leading to unauthenticated RCE has been exploited in attacks.

Security researchers from Palo Alto Networks believe the likely Asia-based group is expanding its activities, which include ...

The news this week has struck at the very foundation of WhatsApp's existence. A massive class-action lawsuit filed in San ...

Russia-linked hacking group Fancy Bear is exploiting a brand-new vulnerability in Microsoft Office, CERT-UA says ...

Microsoft is warning admins of an Office security bypass zero day vulnerability that can be triggered simply by a user opening a document. The flaw is currently being actively exploited.

Microsoft has released an out-of-band emergency security update to address a zero-day vulnerability in Microsoft Office that ...

Ukraine's defenders have spotted a new hacking attack ...

A third of the "flipped" CVEs affect edge devices, leading one researcher to conclude, "Ransomware operators are building ...

Jointly developed by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), ISO/IEC 29147 and ISO/IEC 30111 provide a structured framework ...

Microsoft suggests the threat is being used in phishing attacks against vulnerable systems since successful exploitation requires local access to the PC.