The Hacker News

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

CVE-2024-3721 and CVE-2023-33538 exploited in TBK DVRs and EoL TP-Link routers, enabling Mirai variants and DDoS risk.
ExecutiveGov

NIST Revamps Vulnerability Database Prioritization to Manage CVE Surge

NIST is focusing on enriching cybersecurity vulnerabilities and exposures that appear in CISA’s Known Exploited ...
The Hacker News

NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions

NIST limits CVE enrichment after 263% surge since 2020, prioritizing KEV and federal software, shifting thousands to “Not ...
SecurityWeek

Splunk Enterprise Update Patches Code Execution Vulnerability

Splunk has released patches that resolve high- and medium-severity vulnerabilities in Splunk Enterprise and MCP Server.
Security Boulevard

National Vulnerability Database (NVD) Shifts to Selective Enrichment as CVE Volume Surges

Under a new model announced by the National Institute of Standards and Technology, NVD will no longer enrich every CVE.

NIST limits vulnerability analysis as CVE backlog swells

The National Institute of Standards and Technology is changing how it analyzes newly disclosed vulnerabilities as it faces a ...
Infosecurity Magazine

FIRST CEO Calls for Global CVE Collaboration amid AI Vulnerability Tsunami

FIRST CEO Chris Gibson urged global CVE collaboration and integrating AI companies to combat automated cyber threats ...
SecurityWeek

Recent Apache ActiveMQ Vulnerability Exploited in the Wild

Organizations are warned that a recently patched vulnerability affecting Apache ActiveMQ Classic is being exploited in the ...
Security Boulevard

Microsoft’s April 2026 Patch Tuesday Addresses 163 CVEs (CVE-2026-32201)

Critical154Important1Moderate0LowMicrosoft addresses 163 CVEs in the April 2026 Patch Tuesday release, including two zero-day ...
Dark Reading

How NIST's Cutback of CVE Handling Impacts Cyber Teams

Industry and ad hoc coalitions appear poised to help fill the gap created by NIST's decision to cut back on CVE data ...
Dark Reading

Every Old Vulnerability Is Now an AI Vulnerability

AI's danger isn't that it's creating new bugs, it's that it's amplifying old ones. On March 10, 2026, Microsoft patched ...

RAVEN.IO Raises $20 Million to Prevent Cyberattacks as AI-Generated Exploits Make CVE-Based Security Obsolete

New approach to application security in production at 11 companies analyzes code behavior at runtime rather than relying on CVEs or external defenses PALO ALTO, Calif., March 18, 2026 /PRNewswire/ -- ...