Nissan has disclosed a data breach stemming from the recent zero-day campaign targeting Oracle PeopleSoft customers.

Threat actors have started exploiting CVE-2026-46817, a critical-severity vulnerability in Oracle E-Business Suite’s Payments ...

An attacker has exploited a zero day in Oracle Peoplesoft to gain access to the IT systems of the NAIC, the standard-setting ...

Oracle's stock fell 19% this week, the steepest drop since August 2001, the depths of the dot-com bust. The company's capital ...

Insurer regulatory filing documents, customer bulk orders, and more, stolen in a major zero-day supply chain attack ...

AI is changing the security landscape. More and more threat groups incorporate LLMs into their reconnaissance and exploitation workflows. The notion that some vulnerabilities are too complex to ...

Administrators of the Drupal open source content management platform are rushing to install an emergency patch issued today to fix a “highly critical” SQL injection vulnerability in the application’s ...

The structured query language is a powerful tool for connecting to many database systems that store data in tables organized into rows and columns. It's often used on the backend of business websites ...

Abstract: SQL injection (SQLi) is one of the chief threats to the security of database-driven Web applications. It can cause serious security issues such as authentication bypassing, privacy leakage, ...

On March 10, 2026, Microsoft patched CVE-2026-26144, a cross-site scripting (XSS) vulnerability in Excel. XSS in Office isn't anything new, but what makes this XSS different is what happens after the ...

Fortinet deployed an emergency patch for yet another zero-day vulnerability that has been exploited in the wild. On Saturday, Fortinet disclosed CVE-2026-35616, which it described as an improper ...