Older posts, still searchable. ← Back to recent posts
A newly discovered zero-day in Cisco Catalyst SD-WAN Manager is being actively exploited — and Cisco has no patch ready. Here's what SD-WAN is, who's at risk, and what to do right now.
CISA has added a SolarWinds Serv-U denial-of-service flaw to its Known Exploited Vulnerabilities catalog, and a Cisco SD-WAN zero-day with no patch available is already being used in attacks. If your business runs either platform, here's exactly what to check and what to do.
Google's June 2026 Android update fixes 124 security vulnerabilities, including one high-severity flaw already being actively exploited in the wild. Here's what the vulnerability does, who's at risk, and a step-by-step guide to updating your Android phone today.
Attackers are exploiting a critical FortiClient EMS vulnerability (CVE-2026-35616) to push a fake Fortinet update that silently harvests passwords, session cookies, and even credit card data from business computers. Here's what the attack looks like and how to protect your organization.
A critical vulnerability in Fortinet's FortiClient EMS (CVE-2026-35616) is being actively exploited to steal browser passwords, cookies, and credit card data — without requiring a single login credential from attackers. Here's what it is, who's affected, and what to do right now.
A newly discovered Linux vulnerability called 'Copy Fail' (CVE-2026-31431) is already being actively exploited in the wild. CISA has ordered federal agencies to patch by May 15, 2026 — and small businesses running Linux-based routers, NAS devices, or servers should act immediately.
A nine-year-old Linux kernel flaw called 'Copy Fail' is now under active exploitation and has been added to CISA's Known Exploited Vulnerabilities catalog. Here's what Yuba City small businesses running Linux servers need to know — and exactly how to check if you're affected.
A newly disclosed Linux kernel flaw called 'Copy Fail' lets any unprivileged local user gain full root access using a 732-byte Python script — and it affects nearly every major Linux distribution released since 2017. Here's what small businesses running Linux need to do right now.
Microsoft quietly pushed an emergency patch for a critical ASP.NET Core vulnerability (CVE-2026-40372) that lets attackers hijack accounts and steal data. If your website or web app runs on ASP.NET Core 10.x on Linux or macOS, here's exactly what you need to do right now.
