Collaborate Disseminate
Oracle has released mitigations for CVE-2026-35273, but it has not said whether it’s a zero-day exploited in ShinyHunters attacks.
The post Oracle Addresses PeopleSoft Vulnerability Amid Reports of Zero-Day Attacks appeared first on SecurityWeek.
Continue reading Oracle Addresses PeopleSoft Vulnerability Amid Reports of Zero-Day Attacks
A PowerShell script included in patch files appears to be triggering false positives by multiple security engines.
The post Siemens Says Desigo CC Files Flagged as Malware by Security Engines appeared first on SecurityWeek.
Continue reading Siemens Says Desigo CC Files Flagged as Malware by Security Engines
The ShinyHunters hacker group has taken credit for the attack, leaking more than 450,000 email addresses and other information.
The post University of Nottingham Confirms Breach After Hackers Leak Data appeared first on SecurityWeek.
Continue reading University of Nottingham Confirms Breach After Hackers Leak Data
The company warned about zero-day attacks exploiting the Exchange Server vulnerability CVE-2026-42897 on May 14.
The post Microsoft Patches Exploited Exchange Server Vulnerability appeared first on SecurityWeek.
Continue reading Microsoft Patches Exploited Exchange Server Vulnerability
Claroty researchers have analyzed the security of Vertiv UPS network cards and the Trane Tracer SC+ HVAC controller.
The post Critical HVAC and UPS Vulnerabilities Could Let Hackers Disrupt Data Centers appeared first on SecurityWeek.
Continue reading Critical HVAC and UPS Vulnerabilities Could Let Hackers Disrupt Data Centers
The company updated hosted customer instances to patch a security issue it reportedly had known about since April 7.
The post ServiceNow Patches Vulnerability Exploited Against Some Customers appeared first on SecurityWeek.
Continue reading ServiceNow Patches Vulnerability Exploited Against Some Customers
In addition, Rockwell Automation announced some enhancements to its SecureOT cybersecurity solution for OT.
The post ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact appeared first on SecurityWeek.
Continue reading ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact
Three of the vulnerabilities fixed with the latest Patch Tuesday updates were publicly disclosed before Microsoft addressed them.
The post Microsoft Patches 200 Vulnerabilities appeared first on SecurityWeek.
Continue reading Microsoft Patches 200 Vulnerabilities
Nearly half of the security holes, most allowing arbitrary code execution, have been fixed in Adobe’s Experience Manager product.
The post Adobe Patches 123 Vulnerabilities appeared first on SecurityWeek.
Continue reading Adobe Patches 123 Vulnerabilities
The AI giant also announced that Project Glasswing partners are being given access to the upgraded Mythos 5.
The post Anthropic Launches Claude Fable 5: Mythos-Class AI With Cybersecurity Guardrails appeared first on SecurityWeek.
Continue reading Anthropic Launches Claude Fable 5: Mythos-Class AI With Cybersecurity Guardrails