Threat intelligence observations show that a single threat actor is responsible for most of the active exploitation of two ...

A backend flaw in web admin dashboards used by one of India's largest pharmacy chains, exposed thousands of online pharmacy orders.

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.

This year should break all the records in terms of vulnerability disclosed, reaching or even surpassing 50,000 new CVEs ...

FIRST forecasts a record surge in disclosed vulnerabilities in 2026, but security researchers say most will not translate ...

The National Institute of Standards and Technology is preparing to shift its role in the globally-adopted vulnerability ...

An industrial chemical most Americans already have in their bodies is back under the microscope. New research suggests that even low-level exposure in the womb can disrupt fetal development, ...

Common vulnerabilities and exposures (CVEs) include all types of subversive entry-points discovered in programs, along with a code patch to plug that potential attack vector against hackers who ...

Microsoft and Linux are adding AI and Rust to their pipelines. Microsoft is leaning much harder into AI development than Linux. Both are expanding Rust, but neither OS will be fully Rust soon.

In the sprawling landscape of cybersecurity, few systems are as simultaneously critical and underappreciated as the Common Vulnerabilities and Exposures (CVE) program. For more than two decades, this ...

With the end of the government shutdown comes reauthorization of the Cybersecurity and Infrastructure Security Agency. The Department of Homeland Security agency has released a series of cybersecurity ...

EMERYVILLE, Calif.--(BUSINESS WIRE)--Tanium, a leader in Autonomous Endpoint Management (AEM), announced today it has been authorized by the CVE Program as a CVE Numbering Authority (CNA). As a CNA, ...