vulnerability

SAP NetWeaver Under Siege: Critical Vulnerabilities Exploited for RCE and Data Theft

CVE News

SAP NetWeaver Under Siege: Critical Vulnerabilities Exploited for RCE and Data Theft

SAP has released patches for 21 new security flaws, including three critical vulnerabilities in its widely used...

Meta Faces Lawsuit Over Alleged WhatsApp Security Failures and FTC Violations

Cyber Laws & Regulations

Meta Faces Lawsuit Over Alleged WhatsApp Security Failures and FTC Violations

A former head of security for WhatsApp has filed a lawsuit against Meta, accusing the social media...

Czech Cyber Agency Issues High-Risk Warning on Chinese Technology and Data Transfers

APT-News

Czech Cyber Agency Issues High-Risk Warning on Chinese Technology and Data Transfers

The National Cyber and Information Security Agency of the Czech Republic (NÚKIB) has formally instructed organizations within...

Sitecore Zero-Day Exploitation: Anatomy of a Critical ViewState Deserialization Attack

CVE News

Sitecore Zero-Day Exploitation: Anatomy of a Critical ViewState Deserialization Attack

A critical zero-day vulnerability in legacy Sitecore deployments, designated CVE-2025-53690, has been actively exploited by threat actors...

TP-Link Router Zero-Day and Active Exploitation Campaigns Prompt Urgent CISA Response

CVE News

TP-Link Router Zero-Day and Active Exploitation Campaigns Prompt Urgent CISA Response

TP-Link has confirmed the existence of an unpatched zero-day vulnerability impacting multiple router models, as the U.S....

France’s CNIL Issues €325M Fine to Google for Gmail Ad and Cookie Violations

Cyber Laws & Regulations

France’s CNIL Issues €325M Fine to Google for Gmail Ad and Cookie Violations

France’s data protection authority, the Commission Nationale de l’Informatique et des Libertés (CNIL), has imposed a substantial...

Windows Update Issues: UAC Prompts, System Recovery Failures, and Contested SSD Impacts

Blue-Team

Windows Update Issues: UAC Prompts, System Recovery Failures, and Contested SSD Impacts

Microsoft has confirmed that recent security updates, specifically the August 2025 patches, are causing significant system disruptions...

Apitor Technology Settlement Highlights Persistent COPPA Violations and Evolving IoT Risks

Cyber Laws & Regulations

Apitor Technology Settlement Highlights Persistent COPPA Violations and Evolving IoT Risks

The U.S. Department of Justice, on behalf of the Federal Trade Commission (FTC), has filed a lawsuit...

Geolocation as a Cyber Weapon: The Invisible Attack Vector Reshaping Modern Threats

Threat Intelligence

Geolocation as a Cyber Weapon: The Invisible Attack Vector Reshaping Modern Threats

The weaponization of geolocation data represents one of the most significant shifts in offensive cyber operations, transforming...

Analysis of Actively Exploited Android Zero-Days Patched in September 2025 Update

CVE News

Analysis of Actively Exploited Android Zero-Days Patched in September 2025 Update

Google’s September 2025 Android security bulletin addresses a significant security event, patching 120 vulnerabilities across the platform...

Google Issues Workarounds for ChromeOS Authentication Failures in Enterprise Environments

Blue-Team

Google Issues Workarounds for ChromeOS Authentication Failures in Enterprise Environments

Google is currently addressing authentication failures that prevent users from signing into their Clever and ClassLink accounts...

Passwordstate Authentication Bypass: A History of High-Severity Flaws and Hardening

CVE News

Passwordstate Authentication Bypass: A History of High-Severity Flaws and Hardening

Click Studios, the developer of the Passwordstate enterprise password manager, has issued an urgent warning to its...

Shadow IT: Quantifying the Unseen Attack Surface Expansion

Blue-Team

Shadow IT: Quantifying the Unseen Attack Surface Expansion

The pervasive use of unauthorized hardware, software, and cloud services, collectively known as Shadow IT, presents a...

Critical Citrix NetScaler RCE Vulnerability Actively Exploited as Zero-Day

CVE News

Critical Citrix NetScaler RCE Vulnerability Actively Exploited as Zero-Day

Citrix has released emergency patches for a critical remote code execution vulnerability, tracked as CVE-2025-7775, affecting its...

CISA Warns of Actively Exploited Git Code Execution Flaw in KEV Catalog

CVE News

CISA Warns of Actively Exploited Git Code Execution Flaw in KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in the Git distributed...

Coordinated Reconnaissance Campaign Targets Microsoft RDP Authentication Servers

Threat Intelligence

Coordinated Reconnaissance Campaign Targets Microsoft RDP Authentication Servers

Internet intelligence firm GreyNoise has identified a significant and coordinated surge in scanning activity directed at Microsoft...

Critical Docker Desktop Vulnerability CVE-2025-9074 Enables Host Takeover

CVE News

Critical Docker Desktop Vulnerability CVE-2025-9074 Enables Host Takeover

A critical vulnerability in Docker Desktop for Windows and macOS, designated CVE-2025-9074, has been patched after it...

Microsoft Outlook Mobile Sync Disruption: Analysis of HMA Incident EX1137017

Blue-Team

Microsoft Outlook Mobile Sync Disruption: Analysis of HMA Incident EX1137017

Microsoft is currently addressing a significant service disruption affecting Outlook mobile users who utilize Hybrid Modern Authentication...

Apple’s 2025 Zero-Day Response: Sophisticated Attacks and Unprecedented Backporting

CVE News

Apple’s 2025 Zero-Day Response: Sophisticated Attacks and Unprecedented Backporting

Apple has released emergency security updates to address a zero-day vulnerability actively exploited in what the company...

Agentic AI Browsers Face Critical Security Threats from Fraudulent Purchases and Phishing

Threat Intelligence

Agentic AI Browsers Face Critical Security Threats from Fraudulent Purchases and Phishing

A recent study by cybersecurity firm Guardio Labs has revealed significant security vulnerabilities in emerging agentic AI...

Posts pagination

Previous 1 2 3 4 5 … 22 Next

vulnerability

SAP NetWeaver Under Siege: Critical Vulnerabilities Exploited for RCE and Data Theft

Meta Faces Lawsuit Over Alleged WhatsApp Security Failures and FTC Violations

Czech Cyber Agency Issues High-Risk Warning on Chinese Technology and Data Transfers

Sitecore Zero-Day Exploitation: Anatomy of a Critical ViewState Deserialization Attack

TP-Link Router Zero-Day and Active Exploitation Campaigns Prompt Urgent CISA Response

Windows Update Issues: UAC Prompts, System Recovery Failures, and Contested SSD Impacts

Geolocation as a Cyber Weapon: The Invisible Attack Vector Reshaping Modern Threats

Analysis of Actively Exploited Android Zero-Days Patched in September 2025 Update

Passwordstate Authentication Bypass: A History of High-Severity Flaws and Hardening

Critical Citrix NetScaler RCE Vulnerability Actively Exploited as Zero-Day

CISA Warns of Actively Exploited Git Code Execution Flaw in KEV Catalog

Coordinated Reconnaissance Campaign Targets Microsoft RDP Authentication Servers

Critical Docker Desktop Vulnerability CVE-2025-9074 Enables Host Takeover

Apple’s 2025 Zero-Day Response: Sophisticated Attacks and Unprecedented Backporting

Agentic AI Browsers Face Critical Security Threats from Fraudulent Purchases and Phishing

You may have missed

Adobe Analytics Data Leak: Architectural Failure Exposes Cross-Tenant Data

Snapchat’s Shift to Paid Storage: A Technical Analysis of Cloud Service Monetization

Google’s Developer Registration Policy Threatens F-Droid’s Existence

Google Drive for Desktop Deploys AI-Powered Ransomware Detection and Recovery