Explore

Rapid Read Rapid Read
CISA Expands Known Exploited Vulnerabilities Catalog with Cisco, Kentico, and Zimbra Flaws

CISA Expands Known Exploited Vulnerabilities Catalog with Cisco, Kentico, and Zimbra Flaws

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) catalog to include eight additional security flaws. Among these are three newly flagged vulnerabilities, including a high-severity information disclosure bug in Cisco Catalyst SD-WAN Manager, identified as CVE-2026-20133. This flaw, which was patched in February, could allow attackers to access the API of an affected system and read information on the underlying operating system. Additionally, CISA has added vulnerabilities from Kentico Xperience and Zimbra Collaboration Suite (ZCS) that have been exploited in attacks. The Kentico vulnerability, CVE-2025-2749, involves a path traversal and arbitrary file upload issue, while the ZCS vulnerability, CVE-2025-48700, is an XSS bug that can execute JavaScript code within a user's session. CISA has urged federal agencies to patch these vulnerabilities by specific deadlines in April and May.
Rapid Read Rapid Read
Vulnerabilities in Serial-to-IP Converters Threaten OT and Healthcare Systems

Vulnerabilities in Serial-to-IP Converters Threaten OT and Healthcare Systems

Security researchers have identified critical vulnerabilities in serial-to-IP converters, which are used to connect legacy serial equipment to modern networks. These vulnerabilities, found in devices from manufacturers like Moxa and Lantronix, could allow attackers to execute remote code, inject commands, and disrupt services. The flaws, collectively known as BRIDGE:BREAK, pose significant risks to sectors such as healthcare and industrial operations, where these devices are prevalent.
Trendline Trendline
Bluesky Faces Service Disruptions Due to Sophisticated DDoS Attack

Bluesky Faces Service Disruptions Due to Sophisticated DDoS Attack

Bluesky Faces Service Disruptions Due to Sophisticated DDoS Attack
Rapid Read Rapid Read
Hackers Unsuccessful in Exploiting Vulnerability in Discontinued TP-Link Routers, Reports Palo Alto Networks

Hackers Unsuccessful in Exploiting Vulnerability in Discontinued TP-Link Routers, Reports Palo Alto Networks

Hackers have been attempting to exploit a vulnerability in discontinued TP-Link routers for over a year, but have so far been unsuccessful, according to a report by Palo Alto Networks. The vulnerability, identified as CVE-2023-33538, is an authenticated command injection issue that affects several models of TP-Link routers, including TL-WR940N v2 and v4, TL-WR740N v1 and v2, and TL-WR841N v8 and v10. The flaw, which has a CVSS score of 8.8, is due to the lack of sanitization of the ssid1 parameter in HTTP GET requests. Although proof-of-concept exploit code has been available for nearly three years, hackers have failed to exploit the flaw due to errors in the exploit code and incorrect targeting of parameters. The U.S. cybersecurity agency CISA has previously added this vulnerability to its Known Exploited Vulnerabilities catalog, urging federal agencies to discontinue the use of these devices.
Trendline Trendline
Vercel Confirms Cyber Incident, Sensitive Data Potentially Compromised

Vercel Confirms Cyber Incident, Sensitive Data Potentially Compromised

Vercel Confirms Cyber Incident, Sensitive Data Potentially Compromised
Trendline Trendline
Half of Internet-Facing FTP Servers Lack Encryption, Exposing Security Risks

Half of Internet-Facing FTP Servers Lack Encryption, Exposing Security Risks

Half of Internet-Facing FTP Servers Lack Encryption, Exposing Security Risks
Rapid Read Rapid Read
Mastodon Faces DDoS Attack, Causing Service Disruptions

Mastodon Faces DDoS Attack, Causing Service Disruptions

Mastodon, a decentralized social networking software, experienced a distributed denial-of-service (DDoS) attack on its flagship server, mastodon.social, rendering the site unusable at times. The attack led to widespread inaccessibility, with users encountering error messages and outage warnings. Mastodon reported the incident early Monday morning and implemented countermeasures by 9:05 a.m. ET, restoring accessibility but warning of potential ongoing instability. This cyberattack follows a similar incident involving Bluesky, another decentralized social network, which faced a prolonged DDoS attack but has since stabilized. Mastodon has not disclosed the cause of the attack, and representatives have yet to comment further.
Trendline Trendline
Vercel Confirms Security Breach Amid Hacker Claims of Selling Stolen Data

Vercel Confirms Security Breach Amid Hacker Claims of Selling Stolen Data

Vercel Confirms Security Breach Amid Hacker Claims of Selling Stolen Data
Rapid Read Rapid Read
NIST Halts Rating of Non-Priority Flaws Amid Rising Submission Volumes

NIST Halts Rating of Non-Priority Flaws Amid Rising Submission Volumes

The National Institute of Standards and Technology (NIST) has announced it will cease assigning severity scores to lower-priority vulnerabilities due to an overwhelming increase in submission volumes. Starting April 15, NIST will focus on analyzing and providing details for security issues that pose significant risks, such as those in the CISA's Known Exploited Vulnerabilities catalog or affecting U.S. federal government software. The National Vulnerability Database (NVD) will continue to list all submitted vulnerabilities, but those deemed low priority will only have severity ratings from the CVE Numbering Authority that evaluated them. This decision comes as the number of submissions has grown by 263%, with NIST enriching 42,000 CVEs in 2025 alone.
Trendline Trendline
Vercel Security Breach Linked to Context AI Hack Compromises Customer Credentials

Vercel Security Breach Linked to Context AI Hack Compromises Customer Credentials

Vercel Security Breach Linked to Context AI Hack Compromises Customer Credentials
Rapid Read Rapid Read
Continuous Threat Exposure Management Enhances Cybersecurity in Higher Education

Continuous Threat Exposure Management Enhances Cybersecurity in Higher Education

Colleges and universities are increasingly adopting a cybersecurity approach known as Continuous Threat Exposure Management (CTEM) to address vulnerabilities in their systems. This framework helps security teams in higher education to proactively manage risks by focusing on asset visibility and prioritizing vulnerabilities. Traditional vulnerability management often falls short due to the decentralized nature of IT functions across different departments within universities. CTEM, however, offers a structured process involving scoping, discovery, prioritization, validation, and mobilization to improve cybersecurity measures. The approach is particularly relevant as higher education institutions face complex challenges such as open networks and the use of personal devices by students and staff.
Rapid Read Rapid Read
Bluesky Faces Service Disruptions Due to DDoS Attack

Bluesky Faces Service Disruptions Due to DDoS Attack

Bluesky, a social media company, is experiencing ongoing service disruptions due to a sophisticated Distributed Denial-of-Service (DDoS) attack. The attack began on April 15, 2026, and has caused intermittent outages affecting users' ability to access feeds, notifications, threads, and search functions. Despite the disruptions, Bluesky has confirmed that there is no evidence of unauthorized access to private data. The company is working to mitigate the attack and plans to provide updates on the situation.