News

High-Severity SQL Injection Vulnerability in Flickr Set Slideshows (CVE-2025-30590)

CVE News

High-Severity SQL Injection Vulnerability in Flickr Set Slideshows (CVE-2025-30590)

A critical SQL injection vulnerability (CVE-2025-30590) has been discovered in the Dourou Flickr set slideshows plugin, affecting...

Critical FortiOS and FortiProxy RCE Vulnerability (CVE-2023-25610): Patch Now to Prevent Remote Exploitation

CVE News

Critical FortiOS and FortiProxy RCE Vulnerability (CVE-2023-25610): Patch Now to Prevent Remote Exploitation

Summary: Fortinet has disclosed a critical buffer underwrite vulnerability (CVE-2023-25610) affecting multiple versions of FortiOS and FortiProxy,...

Hidden Threats in Microsoft 365 Backups: How Malware Lurks and Risks Reinfection

News

Hidden Threats in Microsoft 365 Backups: How Malware Lurks and Risks Reinfection

A recent study by Acronis Threat Research Unit reveals critical security gaps in Microsoft 365 backup data,...

Critical Next.js Vulnerability (CVE-2025-29927) Exposes Websites to Authorization Bypass Attacks

CVE News

Critical Next.js Vulnerability (CVE-2025-29927) Exposes Websites to Authorization Bypass Attacks

A severe security flaw in Next.js, tracked as CVE-2025-29927, allows attackers to bypass authentication and authorization checks...

Critical Microsoft Windows Vulnerabilities Patched: NCSC-2025-0078 Advisory

CVE News
Exploitation

Critical Microsoft Windows Vulnerabilities Patched: NCSC-2025-0078 Advisory

Microsoft has recently addressed a series of critical vulnerabilities in its Windows operating system, as highlighted in...

Microsoft Azure Vulnerabilities Patched: Key Details for Security Teams

Blue-Team
CVE News

Microsoft Azure Vulnerabilities Patched: Key Details for Security Teams

Microsoft has recently addressed several critical vulnerabilities in its Azure platform, as reported by the Dutch National...

Fortinet Patches Critical Vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb: NCSC-2025-0082 Exploited in Ransomware Attacks

CVE News
Exploitation

Fortinet Patches Critical Vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb: NCSC-2025-0082 Exploited in Ransomware Attacks

Fortinet has recently addressed a critical vulnerability affecting multiple products, including FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb....

Adobe Acrobat Reader Vulnerabilities Patched: Critical Arbitrary Code Execution Flaws Addressed

Exploitation
Red-Team

Adobe Acrobat Reader Vulnerabilities Patched: Critical Arbitrary Code Execution Flaws Addressed

Adobe has recently addressed critical vulnerabilities in Adobe Acrobat Reader, as highlighted in the NCSC-2025-0084 advisory. These...

Ivanti Secure Access Client Vulnerability Patched: NCSC-2025-0085 Explained

Blue-Team
CVE News

Ivanti Secure Access Client Vulnerability Patched: NCSC-2025-0085 Explained

On March 12, 2025, Ivanti announced the resolution of a critical vulnerability in its Ivanti Secure Access...

Autodesk AutoCAD Vulnerabilities Patched: Key Details and Remediation Steps

Exploitation
Threat Intelligence

Autodesk AutoCAD Vulnerabilities Patched: Key Details and Remediation Steps

Autodesk has recently addressed multiple vulnerabilities in its AutoCAD software, a critical tool used by architects, engineers,...

Critical Vulnerability Patched in Apache Tomcat: CVE-2025-24813 Allows Remote Code Execution

CVE News
Exploitation

Critical Vulnerability Patched in Apache Tomcat: CVE-2025-24813 Allows Remote Code Execution

Apache Tomcat, a widely used open-source Java servlet container, has recently addressed a critical vulnerability that could...

Synology Patches Critical Vulnerability in Replication Service and Unified Controller (NCSC-2025-0090)

Exploitation
Red-Team

Synology Patches Critical Vulnerability in Replication Service and Unified Controller (NCSC-2025-0090)

Synology has recently addressed a critical vulnerability in its Synology Replication Service and Synology Unified Controller, which...

Synology Patches Critical LDAP Vulnerability in DiskStation Manager (CVE-2024-10444)

CVE News
Exploitation

Synology Patches Critical LDAP Vulnerability in DiskStation Manager (CVE-2024-10444)

Synology has recently addressed a critical vulnerability in its DiskStation Manager (DSM) software, specifically within its LDAP...

IBM InfoSphere Information Server Vulnerability (CVE-2024-51459) Patched: Medium Risk, High Impact

CVE News
Exploitation

IBM InfoSphere Information Server Vulnerability (CVE-2024-51459) Patched: Medium Risk, High Impact

IBM has recently addressed a critical vulnerability in its IBM InfoSphere Information Server 11.7, as detailed in...

Critical Vulnerability Patched in Veeam Backup & Replication: CVE-2025-23120

Blue-Team
CVE News

Critical Vulnerability Patched in Veeam Backup & Replication: CVE-2025-23120

A critical vulnerability (CVE-2025-23120) in Veeam Backup & Replication has been addressed by the vendor. The flaw,...

Active Exploitation of Critical Vulnerability in Palo Alto PAN-OS: CVE-2024-3400

CVE News
Exploitation

Active Exploitation of Critical Vulnerability in Palo Alto PAN-OS: CVE-2024-3400

The Dutch National Cyber Security Centre (NCSC) has recently observed active exploitation of a critical vulnerability in...

Global CrowdStrike Outage Update: Recovery in Sight, Vigilance Still Required

Blue-Team
Threat Intelligence

Global CrowdStrike Outage Update: Recovery in Sight, Vigilance Still Required

The global outage caused by a faulty update from CrowdStrike has led to significant disruptions for organizations...

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

APT-News
Threat Intelligence

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

The National Cyber Security Centre (NCSC) and the Digital Trust Center (DTC) have recently issued a warning...

NIS2-richtlijn en Cyberbeveiligingswet: Wat organisaties moeten weten over de overgangsperiode

Cyber Laws & Regulations
Security Tools & Research

NIS2-richtlijn en Cyberbeveiligingswet: Wat organisaties moeten weten over de overgangsperiode

Op 17 oktober 2024 treedt de nieuwe Europese netwerk- en informatiebeveiligingsrichtlijn (NIS2-richtlijn) in werking, gericht op het...

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

Exploitation
Threat Intelligence

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

The Nationaal Cyber Security Centrum (NCSC) of the Netherlands has issued a warning regarding a series of cyberattacks...

Red-Team News

High-Severity SQL Injection Vulnerability in Flickr Set Slideshows (CVE-2025-30590)

Critical FortiOS and FortiProxy RCE Vulnerability (CVE-2023-25610): Patch Now to Prevent Remote Exploitation

Critical Next.js Vulnerability (CVE-2025-29927) Exposes Websites to Authorization Bypass Attacks

Critical Microsoft Windows Vulnerabilities Patched: NCSC-2025-0078 Advisory

Fortinet Patches Critical Vulnerabilities in FortiOS, FortiProxy, FortiPAM, FortiSRA, and FortiWeb: NCSC-2025-0082 Exploited in Ransomware Attacks

Adobe Acrobat Reader Vulnerabilities Patched: Critical Arbitrary Code Execution Flaws Addressed

Ivanti Secure Access Client Vulnerability Patched: NCSC-2025-0085 Explained

Autodesk AutoCAD Vulnerabilities Patched: Key Details and Remediation Steps

Critical Vulnerability Patched in Apache Tomcat: CVE-2025-24813 Allows Remote Code Execution

Synology Patches Critical Vulnerability in Replication Service and Unified Controller (NCSC-2025-0090)

Synology Patches Critical LDAP Vulnerability in DiskStation Manager (CVE-2024-10444)

IBM InfoSphere Information Server Vulnerability (CVE-2024-51459) Patched: Medium Risk, High Impact

Critical Vulnerability Patched in Veeam Backup & Replication: CVE-2025-23120

Active Exploitation of Critical Vulnerability in Palo Alto PAN-OS: CVE-2024-3400

Global CrowdStrike Outage Update: Recovery in Sight, Vigilance Still Required

Dutch Devices Part of Chinese Botnet: A Deep Dive into the Cybersecurity Threat

NIS2-richtlijn en Cyberbeveiligingswet: Wat organisaties moeten weten over de overgangsperiode

NCSC.nl Warns of Cl0p Ransomware Campaigns Targeting File Transfer Systems

You may have missed

Critical Authentication Bypass and RCE Vulnerabilities in HPE StoreOnce Software

Coinbase Data Breach: Bribed TaskUs Support Agents Leaked Sensitive User Data

Malicious RubyGems Impersonate Fastlane to Hijack Telegram API Data

Windows 11 Quick Machine Recovery: Automated Boot Failure Remediation