I always get a bit jittery whenever I hear of a new vulnerability that can enable a bypass of the Windows Secure Boot protections. I don’t really need to explain why, do I? Suffice to say, Secure Boot ...

CISA has given U.S. government agencies four days to secure their systems against another Catalyst SD-WAN Manager ...

Fortinet has confirmed that attackers are already exploiting a 9.1-rated zero-day vulnerability. Emergency security update ...

Microsoft fixes 169 vulnerabilities including exploited SharePoint CVE-2026-32201, prompting CISA remediation by April 28, ...

Critical154Important1Moderate0LowMicrosoft addresses 163 CVEs in the April 2026 Patch Tuesday release, including two zero-day ...

CVE-2026-39808 is an OS command injection flaw in FortiSandbox that allows unauthenticated attackers to execute unauthorized ...

April 2026 saw two major cybersecurity events: Microsoft issued its second-largest patch release ever, fixing 169 vulnerabilities including an actively exploited SharePoint flaw, while a severe ...

A critical authentication bypass in nginx-ui, a widely used open-source web interface for managing nginx servers, has been ...

A severe vulnerability in wolfSSL, identified as CVE-2026-5194, threatens billions of devices worldwide, including critical military and infrastructure systems. The flaw undermines digital signature ...

CVSS vulnerability triage missed a chained Palo Alto attack that hit 13,000 devices. Five failure classes and the fixes ...

Cybersecurity researchers have discovered a critical "by design" weakness in the Model Context Protocol's (MCP) architecture ...