News

Chrome patched this bug, but CISA says it's still actively exploited
Google patched a new Chrome bug recently Now, CISA added that vulnerability to KEV, signaling abuse in the wild Federal ...
The Hacker News8d
New Chrome Vulnerability Enables Cross-Origin Data Leak via Loader Referrer Policy
Chrome flaw CVE-2025-4664 enables cross-origin data leaks; active exploit confirmed; update to 136.0.7103.113.
Urgent Chrome Update: CISA Warns An Alarming Security Flaw Is Being Exploited
The CISA has identified and reported 3 zero-day vulnerabilities, and one of them could be a big problem for Chrome users.
theregister12d
CISA mutes own website, shifts routine cyber alerts to Musk’s X, RSS, email
IT admins and others who want to know are advised to sign up for CISA's email notifications to stay informed. Some updates will still be available via RSS, though users tracking the Known Exploited ...
The Record1mon
CISA adds seven bugs to Known Exploited Vulnerabilities Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) added seven vulnerabilities to its catalog of Known Exploited Vulnerabilities. All of the vulnerabilities have remediation dates of April 21 ...
CSOonline6mon
CISA’s VDP is going gangbusters but could still be improved
“CISA also provides resources to interested agencies that promote a streamlined approach to manage vulnerabilities, helping to ensure that vulnerabilities are received and managed rather than ...
SDxCentral1mon
CISA adds CVE-2021-20035 to vulnerabilities catalog
Cybersecurity and Infrastructure Security Agency (CISA) has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2021-20035 ...
Bleeping Computer2mon
CISA tags Windows, Cisco vulnerabilities as actively exploited
CISA has warned US federal agencies to secure their systems against attacks exploiting vulnerabilities in Cisco and Windows systems. While the cybersecurity agency has tagged these flaws as ...