Vulnerability Management

Canada’s House of Commons Cyberattack: Technical Analysis and Response

APT-News

Canada’s House of Commons Cyberattack: Technical Analysis and Response

The House of Commons of Canada is investigating a significant data breach following a cyberattack on August...

Microsoft August 2025 Patch Tuesday: Zero-Day in Windows Kerberos Among 107 Flaws

CVE News

Microsoft August 2025 Patch Tuesday: Zero-Day in Windows Kerberos Among 107 Flaws

Microsoft’s August 2025 Patch Tuesday addresses 107 security vulnerabilities, including one actively exploited zero-day in Windows Kerberos....

Over 29,000 Unpatched Exchange Servers at Risk of Domain Compromise via CVE-2025-53786

CVE News

Over 29,000 Unpatched Exchange Servers at Risk of Domain Compromise via CVE-2025-53786

More than 29,000 Microsoft Exchange servers remain vulnerable to CVE-2025-53786, a high-severity flaw (CVSS 8.0) that enables...

Microsoft 365 to Block Insecure FPRPC Protocol by Default: Security Implications and Configuration Guide

Blue-Team

Microsoft 365 to Block Insecure FPRPC Protocol by Default: Security Implications and Configuration Guide

Microsoft has announced a significant security update affecting Microsoft 365 applications on Windows platforms. Starting late August...

Windows 11 22H2 End of Support: Key Dates and Security Implications

News

Windows 11 22H2 End of Support: Key Dates and Security Implications

Microsoft has officially announced the end of servicing for Windows 11 22H2, with critical deadlines approaching for...

Autoswagger: Open-Source Tool Detects API Authorization Flaws Before Attackers Do

Security Tools & Research

Autoswagger: Open-Source Tool Detects API Authorization Flaws Before Attackers Do

Exposed API documentation has become a prime target for threat actors, providing a clear blueprint of system...

Scattered Spider’s VMware ESXi Attacks: Tactics, Impact, and Defense Strategies

APT-News

Scattered Spider’s VMware ESXi Attacks: Tactics, Impact, and Defense Strategies

The cybercrime group Scattered Spider has intensified attacks targeting VMware ESXi hypervisors across U.S. retail, airline, transportation,...

Microsoft 365 Admin Center Outage: Causes, Impact, and Response

News

Microsoft 365 Admin Center Outage: Causes, Impact, and Response

Microsoft is currently investigating an outage preventing administrators with business or enterprise subscriptions from accessing the Microsoft...

AI Voice Fraud: Sam Altman’s Warning and the Technical Reality

Threat Intelligence

AI Voice Fraud: Sam Altman’s Warning and the Technical Reality

OpenAI CEO Sam Altman’s recent warnings about AI-generated voice fraud highlight a growing threat to financial systems...

Arch Linux Removes Malicious AUR Packages Distributing Chaos RAT

Malware Analysis

Arch Linux Removes Malicious AUR Packages Distributing Chaos RAT

Arch Linux has removed three compromised packages from its Arch User Repository (AUR) after discovering they contained...

Russian Alcohol Retailer WineLab Shuts Down Stores Following Ransomware Attack

APT-News

Russian Alcohol Retailer WineLab Shuts Down Stores Following Ransomware Attack

WineLab, the retail subsidiary of Russia’s largest alcohol producer Novabev Group, has temporarily closed its 2,000+ stores...

WeTransfer Clarifies AI Data Usage Policy Following User Backlash

News

WeTransfer Clarifies AI Data Usage Policy Following User Backlash

WeTransfer, the popular file-sharing service, has clarified that user-uploaded files are not used to train artificial intelligence...

McDonald’s AI Hiring Chatbot Exposes 64 Million Applicants’ Data via Default Credentials

Data Breach

McDonald’s AI Hiring Chatbot Exposes 64 Million Applicants’ Data via Default Credentials

McDonald’s AI-powered hiring chatbot, “Olivia,” developed by Paradox.ai, exposed the personal data of over 64 million job...

Critical Pre-Auth RCE Exploit Released for Fortinet FortiWeb: Patch Immediately

CVE News

Critical Pre-Auth RCE Exploit Released for Fortinet FortiWeb: Patch Immediately

Proof-of-concept (PoC) exploits for a critical SQL injection (SQLi) vulnerability in Fortinet FortiWeb have been publicly released,...

OpenVSX Zero-Day Vulnerability: How a Single Flaw Threatened Millions of Developer Environments

CVE News

OpenVSX Zero-Day Vulnerability: How a Single Flaw Threatened Millions of Developer Environments

A critical vulnerability in OpenVSX, the open-source extension marketplace used by popular VS Code forks like Cursor...

Windows 11’s Shift to JScript9Legacy: Security Gains and Compatibility Trade-offs

News

Windows 11’s Shift to JScript9Legacy: Security Gains and Compatibility Trade-offs

Microsoft has replaced the legacy JScript engine with JScript9Legacy in Windows 11 version 24H2 and later, marking...

PerfektBlue Bluetooth Vulnerabilities Expose Critical Automotive Systems to Remote Attacks

CVE News

PerfektBlue Bluetooth Vulnerabilities Expose Critical Automotive Systems to Remote Attacks

Four vulnerabilities in OpenSynergy’s BlueSDK Bluetooth stack, collectively dubbed PerfektBlue, have been identified as affecting vehicles from...

Windows 11 KB5062553 & KB5062552 Updates: Security Fixes and Enterprise Impact

CVE News

Windows 11 KB5062553 & KB5062552 Updates: Security Fixes and Enterprise Impact

Microsoft has released two critical cumulative updates for Windows 11 – KB5062553 for version 24H2 and KB5062552...

Microsoft SharePoint Online Access Issues: Technical Analysis and Mitigation Strategies

Blue-Team

Microsoft SharePoint Online Access Issues: Technical Analysis and Mitigation Strategies

Microsoft is currently investigating intermittent access issues affecting SharePoint Online, as confirmed by the company’s status updates1....

Former Student Charged in Multi-Year University Hacking Spree Starting with Parking Fraud

Data Breach

Former Student Charged in Multi-Year University Hacking Spree Starting with Parking Fraud

A 27-year-old former student of Western Sydney University (WSU) has been arrested and charged with 20 cybercrime...

Posts pagination

1 2 3 4 … 13 Next

Vulnerability Management

Canada’s House of Commons Cyberattack: Technical Analysis and Response

Microsoft August 2025 Patch Tuesday: Zero-Day in Windows Kerberos Among 107 Flaws

Over 29,000 Unpatched Exchange Servers at Risk of Domain Compromise via CVE-2025-53786

Microsoft 365 to Block Insecure FPRPC Protocol by Default: Security Implications and Configuration Guide

Windows 11 22H2 End of Support: Key Dates and Security Implications

Autoswagger: Open-Source Tool Detects API Authorization Flaws Before Attackers Do

Scattered Spider’s VMware ESXi Attacks: Tactics, Impact, and Defense Strategies

AI Voice Fraud: Sam Altman’s Warning and the Technical Reality

Arch Linux Removes Malicious AUR Packages Distributing Chaos RAT

Russian Alcohol Retailer WineLab Shuts Down Stores Following Ransomware Attack

WeTransfer Clarifies AI Data Usage Policy Following User Backlash

McDonald’s AI Hiring Chatbot Exposes 64 Million Applicants’ Data via Default Credentials

Critical Pre-Auth RCE Exploit Released for Fortinet FortiWeb: Patch Immediately

OpenVSX Zero-Day Vulnerability: How a Single Flaw Threatened Millions of Developer Environments

Windows 11’s Shift to JScript9Legacy: Security Gains and Compatibility Trade-offs

PerfektBlue Bluetooth Vulnerabilities Expose Critical Automotive Systems to Remote Attacks

Windows 11 KB5062553 & KB5062552 Updates: Security Fixes and Enterprise Impact

Microsoft SharePoint Online Access Issues: Technical Analysis and Mitigation Strategies

Former Student Charged in Multi-Year University Hacking Spree Starting with Parking Fraud

You may have missed

U.S. Sanctions Grinex Crypto-Exchange as Garantex Successor in Crackdown on Ransomware Money Laundering

Meta’s Erroneous Instagram Account Bans: Technical Implications for Security Teams

Supreme Court’s Decision on Mississippi Social Media Age Verification Law: Technical and Legal Implications

Microsoft Resolves Critical Windows Server Cluster and VM Stability Issues