Known Exploited Vulnerabilities and counting....
A known exploited vulnerability (KEV) refers to a software vulnerability that is being actively exploited by cybercriminals or threat actors. When a vulnerability becomes known to be exploited in the wild, it signals that the vulnerability poses a significant and imminent risk to organizations.
Common Vulnerability and Exposure
CVEs form a database of known security vulnerabilities that are actively tracked and managed by a group of organizations, such as the U.S. National Cyber Security Alliance. CVEs are an important tool for network security management because they not only provide an inventory of existing vulnerabilities, but also provide information about how the vulnerability can be exploited and instructions on how to protect against it.
Search Known Exploits
Search for CVEs by vendor to identify known exploited vulnerabilities in your environment
Upcoming Patch Due Dates
via Binding Operational Directive 22-01
(BOD) 22-01 is a directive issued by the Cybersecurity and Infrastructure Security Agency (CISA) in the United States to federal agencies and federal contractors in order to improve their cybersecurity practices. It provides a set of guidelines and requirements that these agencies and contractors must follow to increase their defenses against cyber threats.
Loading...
Cyber Security News
You may have missed...
*
Inside a cyberattack: How hackers steal data
The truth about cybersecurity is that it's almost impossible to keep hackers outside of an organization, particularly as the cybercrime industry ...
North Korean state hackers seen using Medusa ransomware in attacks on US, Middle East
Cybersecurity researchers said they saw Medusa attacks launched by members of Lazarus — a well-known North Korean hacking operation housed within ...
Lazarus Group Uses Medusa Ransomware in Middle East and U.S. Healthcare Attacks
The use of ransomware by North Korean hacking groups is not without precedent. As far back as 2021, a Lazarus sub-cluster referred to as Andariel ...
How pig-butchering crypto scams turn trust into a financial weapon - MSN
This uptick followed prominent crypto security breaches in 2025, particularly the Bybit exchange hack in February, which contributed to $1.5Â ...
Why now's the time to prepare for the quantum computing era | SC Media
Most security teams rely on traditional discovery tools that are great ... We don't just have to know what keys and libraries are crypto-capable, we n...
Crypto.com Secures Conditional Approval for National Trust Bank Charter - Yahoo Finance
“This conditional approval is the latest testament to both our commitment to compliance and to providing customers trusted and secure services they .....
PayPal data breach was undiscovered for up to 6 months - Computing UK
A fault in PayPal's Working Capital (PPWC) loan application process attributed to a "code change" on 1st July 2025, allowed an attacker to access ...
Romanian hacker pleads guilty to selling access to Oregon state networks - Security Affairs
Romanian man pleaded guilty to selling admin access to Oregon's state network for $3K in Bitcoin and repeatedly accessing it to prove control.
An Easy Apple Screensharing Hack - The New York Times
Are you the go-to tech support family member? If so, this tip that writer Jon Chase accidentally discovered during an extended FaceTime Tech Talk ...
Updated daily