Security Boulevard1d
CVEs lose relevance: Get proactive — and think beyond vulnerabilities
Application security (AppSec) would not have existed for the past 25 years without the Common Vulnerabilities and Exposures ...
CISA spots spawn of Spawn malware targeting Ivanti flaw
Uncle Sam dubbed the latest software nasty Resurge, and warned it infects devices by exploiting CVE-2025-0282 - a critical ...
Why is someone mass-scanning Juniper and Palo Alto Networks products?
Someone or something is probing devices made by Juniper Networks and Palo Alto Networks, and researchers think it could be ...
Keeper Security Joins CISA's Secure by Design Pledge to Strengthen Cybersecurity
Keeper Security, the leading provider of zero-trust and zero-knowledge Privileged Access Management (PAM) software protecting passwords, passkeys, privileged accounts, secrets and remote connections, ...
Cisco warns of CSLU backdoor admin account used in attacks
Cisco warns admins to patch a critical Cisco Smart Licensing Utility (CSLU) vulnerability, which exposes a built-in backdoor ...
Apache Tomcat: Attacks on critical security vulnerability ongoing
A critical vulnerability in Apache Tomcat allows malicious code to be injected. This is exactly what attackers are currently ...
Security Boulevard2d
Top CVEs & Vulnerabilities of March 2025
March 2025 was a high-alert month for cybersecurity teams. Critical CVEs surfaced across widely used technologies, some quiet, others loud, but all carrying real risk. These weren’t just routine ...
Critical auth bypass bug in CrushFTP now exploited in attacks
Attackers are now targeting a critical authentication bypass vulnerability in the CrushFTP file transfer software using ...
CISA warns of "Resurge" malware after Ivanti ICS attacks
Attacks on Ivanti's ICS have been known since the beginning of January. CISA has analyzed the malware that attackers have ...
Ivanti products targeted by dangerous malware yet again
Multiple Ivanti products are being targeted by a piece of malware called RESURGE, a new security advisory published by the US Cybersecurity and Infrastructure Security Agency (CISA) has said, ...