Hackers are exploiting a server-side request forgery (SSRF) vulnerability in Ivanti Connect Secure, Policy Secure, and ZTA gateways to deploy the new DSLog backdoor on vulnerable devices. The ...

Proof-of-concept exploit code has surfaced on GitHub for a critical authentication bypass vulnerability in Microsoft SharePoint Server, allowing privilege escalation. Tracked as CVE-2023-29357, the ...

Microsoft recently patched three vulnerabilities in its Azure API Management service, two of which enabled server-side request forgery (SSRF) attacks that could have allowed hackers to access internal ...

Akamai’s new study: Bots, phishing and server attacks making commerce a cybersecurity hotspot Your email has been sent Bots raining on retail drive flood in commerce attacks Led by LFI attacks, web ...

While testing Delegated Managed Service Accounts (dMSA) on Windows Server 2025 I found another way to compromise Active Directory environments. DMSA provides another way to escalate privileges to any ...

Exchange Server products are potential subject two newly disclosed "zero-day" vulnerabilities that are under exploit, Microsoft acknowledged, in a Thursday announcement. The two vulnerabilities are ...

Fractured Online is preparing for its big Endgame Changer update, but the team has hit a few snags. In addition to finding a significant dupe exploit that led to server downtime, they also had a ...