CSC News

Rust library vulnerability reports are surging after researchers detailed Tarmageddon, a tar extraction flaw that can lead to remote code execution. The issue involves how tar entries are …

TP-Link Omada vulnerabilities have been patched in new gateway firmware that addresses critical security flaws. The updates include a remote code execution fix for CVE-2024-55606. Administrators should apply …

Keycard funding announcement leads a 38 million Series A for the identity security startup that just exited stealth. The round signals investor demand for identity threat defense and …

Field CXO Leadership is reshaping how vendors and enterprises turn customer insight into security and product outcomes. It connects buyer reality to executive action with measurable impact. The …

Pwn2Own Ireland 2025 opened in Dublin with more than 520,000 dollars awarded on Day One. Researchers delivered live zero day exploit chains against enterprise and industrial targets. The …

Gravwell funding round raises 15.4 million in Series A to expand its data analytics security platform and accelerate security operations. The company will invest in product delivery, go …

Software Supply Chain Security takes center stage as SBOM pioneer Allan Friedman joins NetRise, adding policy and implementation depth to a platform built for firmware and embedded systems …

Actively Exploited Vulnerabilities prompted a new CISA alert that orders urgent patching for Apple, Microsoft, and Kentico products and adds the flaws to the agency’s Known Exploited Vulnerabilities …

A new Supply Chain Attack is abusing Visual Studio Code extensions to deliver the GlassWorm malware to developers and engineering teams. The campaign exploits trusted tooling to blend …

WatchGuard firewall vulnerability disclosures are triggering urgent patching after researchers identified more than 73,000 internet-exposed Firebox devices worldwide. Security teams should prioritize updates and restrict remote access to …