SolarWinds fixes a series of high-impact flaws in its Web Help Desk platform, releasing a security update that patches six vulnerabilities—four of which attackers could exploit without authentication. These critical issues, identified by researchers from watchTowr and Horizon3.ai, include remote code execution (RCE) risks and authentication bypasses. Among the flaws, CVE-2025-40552 and CVE-2025-40554 allow access […]
The U.S. pushes global AI cybersecurity standards as part of a broader diplomatic initiative aimed at shaping international norms around emerging technologies. American officials are leveraging foreign relations to align global practices with the federal government’s evolving approach to artificial intelligence and digital security. This move ties directly into the forthcoming national cybersecurity strategy, which […]
An ex-Google engineer convicted of stealing over 2,000 confidential documents has been found guilty by a U.S. federal jury, the Department of Justice announced Thursday. Linwei Ding, also known as Leon Ding, faces seven counts of economic espionage and seven counts of trade secret theft. Prosecutors said the stolen information contained critical artificial intelligence data […]
Ivanti has issued emergency updates to address two critical-severity vulnerabilities in its Endpoint Manager Mobile (EPMM) software, as ivanti patches exploited EPMM zero-days actively used in recent attacks. The flaws, which affect certain versions of the platform, could allow unauthenticated remote attackers to execute arbitrary code. That level of access raises serious concerns for organizations […]