News

Tenable Research Exposes ConfusedComposer, A Privilege Escalation Vulnerability in Google Cloud Platform
ConfusedComposer Exploits Hidden Cloud Service Dependencies Tenable, the cloud exposure management company, has uncovered a ...
The Hacker News17h
GCP Cloud Composer Bug Let Attackers Elevate Access via Malicious PyPI Packages
GCP’s ConfusedComposer flaw let attackers escalate privileges via PyPI packages; patched by Google on April 13.
Security Boulevard19h
ConfusedComposer: A Privilege Escalation Vulnerability Impacting GCP Composer
Tenable Research discovered a privilege-escalation vulnerability in Google Cloud Platform (GCP) that is now fixed and which ...
Insurance Business America1d
Spike in Microsoft flaws sparks insurance concern
The company reported 1,360 disclosed flaws across Microsoft platforms – an 11% increase from the previous peak of 1,292 set ...
Cisco Webex security flaw could let hackers hijack your system via a meeting invite
Cisco has patched a high-severity vulnerability in its Webex video conferencing platform which allowed threat actors to mount ...
Cisco Webex bug lets hackers gain code execution via meeting links
Cisco has released security updates for a high-severity Webex vulnerability that allows unauthenticated attackers to gain ...
41% of Attacks Bypass Defenses: Adversarial Exposure Validation Fixes That
Your dashboards say you're secure—but 41% of threats still get through. Picus Security's Adversarial Exposure Validation ...
12th Annual Edition of the BeyondTrust Microsoft Vulnerabilities Report Reveals Record-Breaking Year for Microsoft Vulnerabilities
Total vulnerabilities reached an all-time high of 1,360 in 2024, an 11% increase from the previous record of 1,292 in 2022Elevation of Privilege ...
Patch Tuesday: Microsoft Fixes 134 Vulnerabilities, Including 1 Zero-Day
One CVE was used against “a small number of targets.” Windows 10 users needed to wait a little bit for their patches.
Your Android phone might be hacked without you knowing. Update now to fix these critical security issues
Google has released an urgent Android security update to fix two critical zero-day vulnerabilities—CVE-2024-53197 and ...
Microsoft: Windows CLFS Vulnerability Could Lead to ‘Widespread Deployment and Detonation of Ransomware’
Microsoft warns CVE-2025-29824 lets attackers with user access escalate privileges to deploy ransomware via a flaw in Windows CLFS.
Windows PCs under threat from zero-day flaw used in ransomware attacks — update your computer right now
This zero-day flaw is a privilege escalation bug in the Windows Common Log File System that can be exploited in order to ...