Vulnerability Detection

GitLab Public Repository Scan Uncovers Widespread Exposure of Live Secrets

Security Tools & Research

GitLab Public Repository Scan Uncovers Widespread Exposure of Live Secrets

A comprehensive security scan of all 5.6 million public repositories on GitLab Cloud has revealed a significant...

Windows 11 24H2 Shell Instability: A Technical Analysis of Critical System Crashes

Blue-Team

Windows 11 24H2 Shell Instability: A Technical Analysis of Critical System Crashes

Microsoft has officially confirmed a critical bug in Windows 11 24H2 that causes the File Explorer, Start...

Native Sysmon Integration in Windows 11 and Server 2025: A New Era for Endpoint Visibility

Blue-Team

Native Sysmon Integration in Windows 11 and Server 2025: A New Era for Endpoint Visibility

Microsoft has announced a significant shift in its security strategy by integrating the System Monitor (Sysmon) tool...

Google Chrome’s Seventh Zero-Day of 2025 Patched in Emergency Update

CVE News

Google Chrome’s Seventh Zero-Day of 2025 Patched in Emergency Update

Google has released an emergency security update for its Chrome browser to address CVE-2025-13223, a high-severity type...

RondoDox Botnet Exploits Critical XWiki Vulnerability in Widespread Campaign

CVE News

RondoDox Botnet Exploits Critical XWiki Vulnerability in Widespread Campaign

A critical security vulnerability in the XWiki Platform, tracked as CVE-2025-24893, is now being actively exploited by...

ASUS DSL Router Critical Authentication Bypass: CVE-2025-59367 Analysis and Mitigation

CVE News

ASUS DSL Router Critical Authentication Bypass: CVE-2025-59367 Analysis and Mitigation

ASUS has issued a security advisory concerning a critical authentication bypass vulnerability, tracked as CVE-2025-59367, affecting several...

SAP November 2025 Patch Day: Critical Hardcoded Credentials and Code Injection Flaws Addressed

CVE News

SAP November 2025 Patch Day: Critical Hardcoded Credentials and Code Injection Flaws Addressed

SAP has released its November 2025 security updates, a critical patch batch addressing 18 new security notes...

Critical Authentication Bypass in Service Finder WordPress Theme Actively Exploited

CVE News

Critical Authentication Bypass in Service Finder WordPress Theme Actively Exploited

A critical security vulnerability in the Service Finder WordPress theme and its accompanying Bookings plugin is being...

Redis Critical RCE Vulnerability Puts Thousands of Instances at Risk

CVE News

Redis Critical RCE Vulnerability Puts Thousands of Instances at Risk

The Redis security team has issued patches for a critical, maximum-severity vulnerability that enables authenticated attackers to...

Critical Unity Engine Vulnerability CVE-2025-59489: Technical Analysis and Industry Response

CVE News

Critical Unity Engine Vulnerability CVE-2025-59489: Technical Analysis and Industry Response

A significant security vulnerability, tracked as CVE-2025-59489, has been identified within the Unity game engine, posing a...

DrayTek Router Security Crisis: Critical RCE and Global Reboot Incident Explained

CVE News

DrayTek Router Security Crisis: Critical RCE and Global Reboot Incident Explained

Networking hardware manufacturer DrayTek is confronting a significant security crisis involving multiple vulnerabilities in its Vigor router...

AI in Vulnerability Management: A Trust but Verify Approach

Security Tools & Research

AI in Vulnerability Management: A Trust but Verify Approach

The integration of artificial intelligence into cybersecurity workflows promises unprecedented speed in vulnerability detection and code generation....

Supermicro BMC Vulnerabilities Expose Persistent Backdoor Risks in Server Firmware

CVE News

Supermicro BMC Vulnerabilities Expose Persistent Backdoor Risks in Server Firmware

Security researchers have identified new vulnerabilities in Supermicro’s Baseboard Management Controller (BMC) firmware that allow attackers to...

Google Addresses Sixth Actively Exploited Chrome Zero-Day of 2025

CVE News

Google Addresses Sixth Actively Exploited Chrome Zero-Day of 2025

Google has released an emergency security update for its Chrome browser to address a high-severity zero-day vulnerability,...

Microsoft September 2025 Patch Tuesday: Analysis of 81 Flaws and Two Zero-Days

Blue-Team

Microsoft September 2025 Patch Tuesday: Analysis of 81 Flaws and Two Zero-Days

Microsoft’s September 2025 Patch Tuesday has been released, addressing a total of 81 security vulnerabilities across its...

Analysis of Actively Exploited Android Zero-Days Patched in September 2025 Update

CVE News

Analysis of Actively Exploited Android Zero-Days Patched in September 2025 Update

Google’s September 2025 Android security bulletin addresses a significant security event, patching 120 vulnerabilities across the platform...

Shadow IT: Quantifying the Unseen Attack Surface Expansion

Blue-Team

Shadow IT: Quantifying the Unseen Attack Surface Expansion

The pervasive use of unauthorized hardware, software, and cloud services, collectively known as Shadow IT, presents a...

Critical Citrix NetScaler RCE Vulnerability Actively Exploited as Zero-Day

CVE News

Critical Citrix NetScaler RCE Vulnerability Actively Exploited as Zero-Day

Citrix has released emergency patches for a critical remote code execution vulnerability, tracked as CVE-2025-7775, affecting its...

Critical Docker Desktop Vulnerability CVE-2025-9074 Enables Host Takeover

CVE News

Critical Docker Desktop Vulnerability CVE-2025-9074 Enables Host Takeover

A critical vulnerability in Docker Desktop for Windows and macOS, designated CVE-2025-9074, has been patched after it...

Metropolitan Police Facial Recognition Deployment Faces Legal and Technical Scrutiny

Cyber Laws & Regulations

Metropolitan Police Facial Recognition Deployment Faces Legal and Technical Scrutiny

The Equality and Human Rights Commission (EHRC) has formally declared its position that the Metropolitan Police Service’s...

Posts pagination

1 2 3 4 Next

Vulnerability Detection

GitLab Public Repository Scan Uncovers Widespread Exposure of Live Secrets

Windows 11 24H2 Shell Instability: A Technical Analysis of Critical System Crashes

Native Sysmon Integration in Windows 11 and Server 2025: A New Era for Endpoint Visibility

Google Chrome’s Seventh Zero-Day of 2025 Patched in Emergency Update

RondoDox Botnet Exploits Critical XWiki Vulnerability in Widespread Campaign

ASUS DSL Router Critical Authentication Bypass: CVE-2025-59367 Analysis and Mitigation

SAP November 2025 Patch Day: Critical Hardcoded Credentials and Code Injection Flaws Addressed

Critical Authentication Bypass in Service Finder WordPress Theme Actively Exploited

Redis Critical RCE Vulnerability Puts Thousands of Instances at Risk

Critical Unity Engine Vulnerability CVE-2025-59489: Technical Analysis and Industry Response

DrayTek Router Security Crisis: Critical RCE and Global Reboot Incident Explained

AI in Vulnerability Management: A Trust but Verify Approach

Supermicro BMC Vulnerabilities Expose Persistent Backdoor Risks in Server Firmware

Google Addresses Sixth Actively Exploited Chrome Zero-Day of 2025

Microsoft September 2025 Patch Tuesday: Analysis of 81 Flaws and Two Zero-Days

Analysis of Actively Exploited Android Zero-Days Patched in September 2025 Update

Critical Citrix NetScaler RCE Vulnerability Actively Exploited as Zero-Day

Critical Docker Desktop Vulnerability CVE-2025-9074 Enables Host Takeover

Metropolitan Police Facial Recognition Deployment Faces Legal and Technical Scrutiny

You may have missed

Australian Man Sentenced for “Evil Twin” WiFi Attacks Targeting Airports and Flights

GitLab Public Repository Scan Uncovers Widespread Exposure of Live Secrets

GreyNoise IP Check: A Free Tool for Botnet Detection and IP Reputation Monitoring

OBR Enlists Cyber Expert Following Accidental Pre-Budget Data Leak