Hackers Exploit Maximum Severity Adobe ColdFusion Flaw
Threat actors are exploiting an Adobe ColdFusion vulnerability which has a CVSS score of 10.0
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
Threat actors are exploiting an Adobe ColdFusion vulnerability which has a CVSS score of 10.0
Apple BootROM exploit exposes unpatchable USB flaw on A12 and A13 devices
Verizon DBIR finds 31% of data breaches began with software flaws last year
FortiGuard Labs has identified a Mirai-based Nexcorium campaign actively exploiting CVE-2024-3721 in TBK DVR devices
GrafanaGhost chains AI prompt injection and URL flaws to exfiltrate sensitive Grafana data
Microsoft has released a new report about the Storm-1175 group and its connection to Medusa ransomware
Attackers rapidly exploited a critical Oracle WebLogic RCE flaw the same day exploit code was released, according to a CloudSEK honeypot study
CVE-2026-3888 Ubuntu snap flaw lets local users escalate to root via timing-based exploit
CISA issued urgent directive as attackers exploit Cisco SD-WAN flaw granting admin access to networks
Huntress researchers uncover campaign exploiting vulnerabilities to steal data using Elastic Cloud as a data hub
IBM's 2026 X-Force report reveals 44% rise in cyber-attacks on public apps, driven by AI and flaws
Flashpoint warns of a dramatic drop in the average time between vulnerability disclosure and exploitation
Russia-linked hacking group Fancy Bear is exploiting a brand-new vulnerability in Microsoft Office, CERT-UA says
VulnCheck analysts found that vulnerabilities exploited before being publicly disclosed rose from 23.6% in 2024 to 28.96% in 2025
Google has released a Chrome security update to fix three zero-day vulnerabilities, including a high-severity flaw with an active exploit
The flaw, dubbed ‘GeminiJack,’ exploits the trust boundary between user-controlled content in data sources and the AI model’s instruction processing
Threat actors were exploiting vulnerable versions of Triofox after a patched version was released, said Google Cloud researchers
A new UNC6384 campaign highlights the threat actor’s growing sophistication and geographic expansion
Trend Micro have reported a campaign exploiting a flaw in Cisco SNMP to install Linux rootkits on devices
A critical flaw in SAP NetWeaver AS Java is being widely exploited, allowing unauthenticated remote code execution