Those responsible for a MongoDB instance cannot rest easy: an exploit for a critical vulnerability makes upgrades even more ...

MongoDB warns of a critical security vulnerability affecting recent versions. Admins should patch immediately.

A critical vulnerability was recently discovered in Imunify360 AV, a security scanner used by web hosting companies to protect over 56 million websites. An advisory by cybersecurity company Patchstack ...

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Updated November 14 with details of further Microsoft Windows ...

SAP has released its November security updates that address multiple security vulnerabilities, including a maximum severity flaw in the non-GUI variant of the SQL Anywhere Monitor and a critical code ...

Servers running on motherboards sold by Supermicro contain high-severity vulnerabilities that can allow hackers to remotely install malicious firmware that runs even before the operating system, ...

September saw it update and respond to two publicly reported zero-day vulnerabilities, which security researchers consider a cause for concern. The latter one works with the interference of Windows ...

Microsoft has already issued security patches to cover 81 vulnerabilities affecting Windows, Office, SQL Server, and other Microsoft-based products, including two zero-day holes known publicly, with ...

Microsoft has released its August 2025 Patch package, a cumulative set of updates addressing more than 100 vulnerabilities across a host of its products. Microsoft’s SharePoint Server Remote Code ...

The biggest concern for security teams in Microsoft's August 2025 patch update — the second consecutive update with no actively exploited bugs — is several elevation-of-privilege (EoP) vulnerabilities ...