GCN

Microsoft patch fixes 80+ flaws, two zero-days

Microsoft September 2025 Patch Tuesday fixes 81 vulnerabilities including two zero-days in Windows SMB Server and SQL Server, ...
Bleeping Computer

CISA urges software devs to weed out SQL injection vulnerabilities

CISA and the FBI urged executives of technology manufacturing companies to prompt formal reviews of their organizations' software and implement mitigations to eliminate SQL injection (SQLi) security ...
GCN

India’s CERT-In flags new flaws in enterprise software

CERT-In issues high-severity alerts for Microsoft products and Google Chrome vulnerabilities, warning of remote code ...

For September, Patch Tuesday means fixes for Windows, Office and SQL Server

This month’s collection of fixes from Microsoft includes 86 patches — but at least there were no zero-day bugs.
TechSpot

Major TSA security flaw exposed, simple SQL vulnerability could have allowed access to airplane cockpits

Why it matters: Security researchers have uncovered a major vulnerability that could have allowed anyone to bypass airport security and even access airplane cockpits. The flaw was found in the login ...
CSOonline

SQL injection, XSS vulnerabilities continue to plague organizations

Errors that allow SQL injection and cross-site scripting attacks are still the top vulnerabilities that pen-testers find, especially at smaller companies. Despite years topping vulnerability lists, ...
Wired

Your Microsoft Exchange Server Is a Security Liability

Once, reasonable people who cared about security, privacy, and reliability ran their own email servers. Today, the vast majority host their personal email in the cloud, handing off that substantial ...