Security researcher Bobby Gould has published a blog post demonstrating a complete exploit chain for CVE-2025-20281, an unauthenticated remote code execution vulnerability in Cisco Identity Services Engine (ISE). […]
CISA flags PaperCut RCE bug as exploited in attacks, patch now
CISA warns that threat actors are exploiting a high-severity vulnerability in PaperCut NG/MF print management software, which can allow them to gain remote code execution in cross-site request forgery (CSRF) attacks. […]
Microsoft will stop supporting Windows 11 22H2 in October
Microsoft has reminded customers today that the last supported editions of Windows 11 22H2 will reach their end of servicing on October 14. […]
OpenAI prepares GPT-5 for roll out
OpenAI’s ChatGPT-5 could drop in the coming days, and it could be one of the best models from the Microsoft-backed startup. […]
France’s warship builder Naval Group investigates 1TB data breach
France’s state-owned defense firm Naval Group is investigating a cyberattack after 1TB of allegedly stolen data was leaked on a hacking forum. […]
OpenAI could rival Google Shopping with ChatGPT Shop
AI companies like OpenAI and Perplexity like to be the “everything company,” and OpenAI’s latest ChatGPT feature, “Shopping,” makes that obvious. […]
Internet Archive is now a US federal depository library
The Internet Archive has become an official U.S. federal depository library, providing online users with access to archived congressional bills, laws, regulations, presidential documents, and other U.S. government documents. […]
Free Tool Autoswagger Finds The API Flaws Attackers Hope You Miss
Exposed API documentation is a gift-wrapped roadmap for threat actors. The free Autoswagger tool from Intruder scans for exposed docs and flags endpoints with broken access controls—before attackers find them. […]
NASCAR Confirms Personal Information Stolen in Ransomware Attack
NASCAR says names, Social Security numbers, and other personal information was stolen in an April 2025 ransomware attack.
The post NASCAR Confirms Personal Information Stolen in Ransomware Attack appeared first on SecurityWeek.
Root Evidence Launches With $12.5 Million in Seed Funding
Root Evidence is developing fully integrated vulnerability scanning and attack surface management technology.
The post Root Evidence Launches With $12.5 Million in Seed Funding appeared first on SecurityWeek.