Exploitable without authentication, the two security defects could lead to configuration leak and code execution.
The post Fortinet Patches Critical Vulnerabilities in FortiFone, FortiSIEM appeared first on SecurityWeek.
Chrome 144, Firefox 147 Patch High-Severity Vulnerabilities
The two browser updates resolve 26 security defects, including bugs that could be exploited for code execution.
The post Chrome 144, Firefox 147 Patch High-Severity Vulnerabilities appeared first on SecurityWeek.
CrowdStrike to Acquire Browser Security Firm Seraphic for $420 Million
News of the move to acquire Seraphic comes less than a week after CrowdStrike announced an agreement to acquire identity security startup SGNL for $740 million.
The post CrowdStrike to Acquire Browser Security Firm Seraphic for $420 Million appeared first on SecurityWeek.
Adobe Patches Critical Apache Tika Bug in ColdFusion
Adobe has released patches for 25 vulnerabilities across its products, including a critical Apache Tika flaw in ColdFusion.
The post Adobe Patches Critical Apache Tika Bug in ColdFusion appeared first on SecurityWeek.
Microsoft Patches Exploited Windows Zero-Day, 111 Other Vulnerabilities
Two vulnerabilities patched this month by Microsoft were disclosed publicly before fixes were released.
The post Microsoft Patches Exploited Windows Zero-Day, 111 Other Vulnerabilities appeared first on SecurityWeek.
GoBruteforcer Botnet Targeting Crypto, Blockchain Projects
The botnet’s propagation is fueled by the AI-generated server deployments that use weak credentials, and legacy web stacks.
The post GoBruteforcer Botnet Targeting Crypto, Blockchain Projects appeared first on SecurityWeek.
After Goldman, JPMorgan Discloses Law Firm Data Breach
The law firm Fried Frank seems to be informing high-profile clients about a recent data security incident.
The post After Goldman, JPMorgan Discloses Law Firm Data Breach appeared first on SecurityWeek.
Cyber Insights 2026: External Attack Surface Management
AI will assist companies in finding their external attack surface, but it will also assist bad actors in locating and attacking the weak points.
The post Cyber Insights 2026: External Attack Surface Management appeared first on SecurityWeek.
Broadcom Wi-Fi Chipset Flaw Allows Hackers to Disrupt Networks
The vulnerability was discovered in Asus routers, but all devices using the affected chipset are susceptible to attacks.
The post Broadcom Wi-Fi Chipset Flaw Allows Hackers to Disrupt Networks appeared first on SecurityWeek.
SAP’s January 2026 Security Updates Patch Critical Vulnerabilities
SAP has released 17 security notes, including four that address critical SQL injection, RCE, and code injection vulnerabilities.
The post SAP’s January 2026 Security Updates Patch Critical Vulnerabilities appeared first on SecurityWeek.
