The number of Citrix customers impacted by CVE-2025-5777 remains unknown, but researchers have already observed more than 11.5 million attack attempts, targeting thousands of sites.

The besieged security vendor maintains the latest exploited vulnerabilities in its products are entirely linked to unspecified security issues in open-source libraries. Some researchers aren’t buying it.

Andrew Morris, founder and chief architect of GreyNoise

Log4j is a widely-used open-source logging tool popular in apps including Minecraft, Apple Cloud, Cloudflare and Twitter.

Sinkholes don't leak. So why does a small DOD agency say a Chinese hacking group is using one to steal data?

The large-scale effort is duping people into thinking that the IP addresses are malicious.

Operations around the world were unearthed this week. Brazil, India, Iran, Ukraine...you name the country, and we will tell you the infosec issue.