News

New Veeam RCE flaw lets domain users hack backup servers
Veeam has released security updates today to fix several Veeam Backup & Replication (VBR) flaws, including a critical remote ...
SecurityWeek7h
Zyxel Firewall Vulnerability Again in Attacker Crosshairs
GreyNoise warns of a spike in exploitation attempts targeting a two-year-old vulnerability in Zyxel firewalls.
Kusari debuts AI-powered pull request security tool for software supply chain protection
Software supply chain security company Kusari Inc. today unveiled Kusari Inspector, an artificial intelligence-based pull request security tool that provides security risk analysis directly into ...
SecurityWeek10h
Organizations Warned of Vulnerability Exploited Against Discontinued TP-Link Routers
CISA warns that a vulnerability impacting multiple discontinued TP-Link router models is exploited in the wild.
First Known Zero-Click AI Exploit: Microsoft 365 Copilot’s ‘EchoLeak’ Flaw
Security researchers uncovered “EchoLeak,” a zero-click flaw in Microsoft 365 Copilot, exposing sensitive data without user action. Microsoft has mitigated the vulnerability.