MediaTek has disclosed three critical security vulnerabilities in its August 2025 Product Security Bulletin that affect a wide range of chipsets used in smartphones, tablets, and IoT devices.
These out-of-bounds write vulnerabilities enable local privilege escalation attacks, potentially compromising millions of devices worldwide.
This high-severity...
Two critical security vulnerabilities discovered in Anthropic's Claude Code have demonstrated how artificial intelligence tools designed to enhance developer productivity can be weaponized against themselves through sophisticated prompt engineering techniques.
The vulnerabilities, tracked as CVE-2025-54794 and CVE-2025-54795, allowed attackers to bypass security restrictions and...
A critical vulnerabilities in Partner Software and Partner Web applications that pose significant risks to government agencies and municipal organizations across the United States.
The vulnerabilities allow authenticated attackers to execute arbitrary code on compromised systems, potentially granting complete control over affected infrastructure.
Partner Software,...
Genomic sequencing giant Illumina Inc. has agreed to pay $9.8 million to settle federal allegations that it knowingly sold cybersecurity-vulnerable genetic testing systems to U.S. government agencies over a seven-year period.
The settlement, announced Thursday by the Department of Justice, represents a groundbreaking case...
Apple released a comprehensive set of security updates on July 29, 2025, addressing vulnerabilities across its entire ecosystem of devices and operating systems.
The latest updates include critical patches for iOS, iPadOS, macOS, watchOS, tvOS, and visionOS, with particular attention to Safari browser security...
Three critical vulnerabilities in SonicWall's SMA100 series SSL-VPN appliances, highlighting persistent security vulnerabilities in network infrastructure devices.
The vulnerabilities, affecting firmware version 10.2.1.15, include two pre-authentication buffer overflow conditions and a cross-site scripting vulnerability, demonstrating what researchers describe as "trivially avoidable" programming errors that...