Patch/Configuration Management

Related Videos

Plain code with the word "cyberattack" in red.

Attacks involving critical WSUS vulnerability under investigation

SC StaffOctober 29, 2025

Malicious actors have escalated intrusions exploiting the critical untrusted data flaw in Windows Server Update Service, tracked as CVE-2025-59287, following the release of a proof-of-concept flaw last week, Cybersecurity Dive reports.

Vulnerability Management

QNAP warns users to patch critical ASP.NET flaw

SC StaffOctober 28, 2025

BleepingComputer reports that QNAP has urged users to patch a critical ASP.NET Core vulnerability tracked as CVE-2025-55315, which also affects its NetBak PC Agent software for Windows.

Application security

Hackers actively exploiting year-old flaws in WordPress plug-ins

Steve ZurierOctober 28, 2025

Vulnerabilities in GutenKit and Hunk Companion plug-ins could lead to remote code execution (RCE).

Vulnerability Management

Critical WSUS RCE flaw targeted by attackers after patch

Laura FrenchOctober 27, 2025

Microsoft released an out-of-band update for the critical deserialization flaw.

Vulnerability Management

Python-socket.io module flaw lets attackers access business servers

Steve ZurierOctober 27, 2025

Security pros say teams that build apps in python-socket.io should patch right away.

Vulnerability Management

Quartet of severe TP-Link Omada gateway flaws patched

SC StaffOctober 22, 2025

Updates have been issued by TP-Link for four serious vulnerabilities impacting its Omada gateway devices, according to BleepingComputer.

Binary code on screen with red glowing "BUG" text, symbolizing software malfunction, coding error, or system glitch. Ideal for tech content, debugging, and cybersecurity topics.

Vulnerability Management

Oracle EBS, Microsoft, Apple, Kentico bugs added to CISA’s vulnerabilities list

SC StaffOctober 21, 2025

Five new security flaws impacting Oracle, Microsoft, Apple, and Kentico offerings have been included in the Cybersecurity and Infrastructure Security Agency's Known Exploited Vulnerabilities catalog, with federal agencies urged to remediate the issues by Nov. 10, The Hacker News reports.

Patch/Configuration Management

Related Videos

A couple simple steps companies can take to protect their systems from ransomware

Attacks involving critical WSUS vulnerability under investigation

QNAP warns users to patch critical ASP.NET flaw

Hackers actively exploiting year-old flaws in WordPress plug-ins

Critical WSUS RCE flaw targeted by attackers after patch

Python-socket.io module flaw lets attackers access business servers

Quartet of severe TP-Link Omada gateway flaws patched

Oracle EBS, Microsoft, Apple, Kentico bugs added to CISA’s vulnerabilities list

Fast Five

Selected by the SC Media Editorial team every Tuesday.