A critical vulnerability in Grandstream GXP1600 series VoIP phones allows a remote, unauthenticated attacker to gain root privileges and silently eavesdrop on communications.

CVE-2026-2329 allows unauthenticated root-level access to SMB phones, so attackers can intercept calls, commit toll fraud, and impersonate users.

Critical CVE-2026-2329 flaw in Grandstream GXP1600 VoIP phones enables unauthenticated RCE, call interception, and credential theft.

The cybersecurity of business is not the function of CISA. CISA’s remit is to raise the security of FECB agencies, and KEV is ...

Many times when performing penetration tests, there is no lack of tools for conducting penetration testing, but rather the issue relates to performing penetration testing in a fractured way.

Saga’s US dollar-pegged stablecoin has dropped to $0.75, while the protocol's total value locked has fallen by around 55% over the past 24 hours. Layer-1 blockchain protocol Saga has paused its ...

Cybercriminals and state-sponsored hackers are increasingly exploiting Microsoft’s legitimate OAuth 2.0 device authorization process to hijack enterprise accounts, bypassing multifactor authentication ...

As the year draws ever closer to its end, the zero-day vulnerabilities just keep on coming. Google has now confirmed the eighth such zero-day vulnerability, for which a known exploit has been reported ...

It has only been a matter of days since the U.S. Cybersecurity and Infrastructure Security Agency confirmed that Windows users were under attack from two zero-day exploits and urged federal users to ...

GameSpot may get a commission from retail offers. Battlefield 6 and the battle royale game Redsec are getting a new update on November 11, featuring a number of quality-of-life updates and bug fixes.