Security Boulevard

Microsoft’s October 2025 Patch Tuesday Addresses 167 CVEs (CVE-2025-24990, CVE-2025-59230)

Critical158Important2Moderate0LowMicrosoft addresses 167 CVEs in its largest Patch Tuesday to date, including three zero-day ...
Krebs on Security

Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software

Last week cybercriminals deployed ransomware to 1,500 organizations, including many that provide IT security and technical support to other companies. The attackers exploited a vulnerability in ...
Threat Post

APT Groups Finding Success with Patched Microsoft Flaw

Researchers at Kaspersky Lab have identified six APT groups using exploits for a Microsoft Office flaw that was patched in September 2015. A Microsoft Office vulnerability patched six months ago ...
CSO Online

October 2025 Patch Tuesday: Holes in Windows Server Update Service and an ancient modem driver

Admins are urged to immediately patch actively exploited vulnerabilities, including those in the legacy Agere modem driver in ...
Homeland Security Today

CISA Presents Vision for the Common Vulnerabilities and Exposures (CVE) Program

The Cybersecurity and Infrastructure Security Agency (CISA) has released CISA Strategic Focus: CVE Quality for a Cyber Secure Future. The detailed roadmap identifies priorities that will elevate the ...
CSOonline

Over 6,000 vulnerabilities went unassigned by MITRE’s CVE project in 2015

In 1999, MITRE created the Common Vulnerabilities and Exposures (CVE) database as a way to standardize the naming of disclosed vulnerabilities. Seventeen years later, the CVE system is faced with ...