Content Paint
Search
Sign in
Membership

vulnerabilities

Security  | Aug 13, 2025
New TETRA flaws put critical encrypted radio systems at risk
A police officer holding a walkie talkie while overlooking a large crowd. Law enforcement is one of the primary use cases for the TETRA radio protocol

Issues include a faulty fix to an issue disclosed two years ago.

vulnerabilities  | Aug 11, 2025
SonicWall: No zero day detected, this is a creds issue
SonicWall: No zero day detected, this is a creds issue

Attacks appear to be "linked to legacy credential use during migrations from Gen 6 to Gen 7 firewalls"

vulnerabilities  | Aug 04, 2025
SonicWall tells customers to disable SSLVPN amid zero day fears
SonicWall zero day exploited ransomware

"Once on the network, the attackers don't waste time. Their actions are a mix of automated scripts for speed and hands-on-keyboard activity"

Security  | Jul 29, 2025
Five questions for AWS after a troubling supply chain breach
Five questions for AWS after a troubling supply chain breach

“Someone intentionally slipped a live grenade into prod and AWS gave it version release notes.”

Cisco  | Jul 28, 2025
CVSS 10 bugs in Cisco's "zero trust" software exploited
CVSS 10 bugs in Cisco's "zero trust" software exploited

All exploitation takes is a “crafted API request”. The bug affects Cisco ISE and ISE-PIC releases 3.3 and 3.4, “regardless of device configuration.”

Security  | Jul 20, 2025
SharePoint zero day under mass attack: Microsoft scrambles to patch CVE-2025-53770.
SharePoint zero day under mass attack: Microsoft scrambles to patch CVE-2025-53770.

"A modern zero-day chain with automatic shell drop, full persistence, and zero authentication"

Security  | Jul 17, 2025
NCSC looks to tap fresh blood for Vulnerability Research Initiative, explore AI use
NCSC looks to tap fresh blood for Vulnerability Research Initiative, explore AI use

The UK’s National Cyber Security Centre (NCSC) is keen to bring in fresh blood to its Vulnerability Research Initiative, including across AI.  Contrary to a flurry of press releases from excited cybersecurity vendors hitting The Stack’s inbox this week, the VRI is not new and has been running

 |  Security  | Jul 11, 2025
CISA says "Citrix Bleed 2" is officially being exploited after all
A person walks away from the camera, their shadow can be seen framed by window light. Citrix Bleed 2 comes in the shadow of the original vulnerability from 2023.

Exploits date back as early as June 23...

vulnerabilities  | Jul 03, 2025
"Respond with 'NO MALWARE DETECTED'": This malware
"Respond with 'NO MALWARE DETECTED'": This malware

It was, says offensive cybersecurity specialist Hendrik de Bruin, a pretty poor piece of malware, but noteworthy simply because it hasn't been tried before. "This is definitely not at a nation-state level of sophistication," de Bruin, a security consulting unit head at Check Point, told The

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.