A critical path traversal vulnerability (CVE-2025-26692) affecting SIOS Technology’s Quick Agent (V2 and V3) has been disclosed,...
vulnerability
A critical buffer overflow vulnerability (CVE-2025-3991) has been identified in TOTOLINK N150RT routers running firmware version 3.4.0-B20190525....
A new wave of cyberattacks targeting iPhone users has emerged, with malware dubbed “Infostealer” compromising millions of...
Microsoft’s KB5055627 preview cumulative update for Windows 11 24H2, released on April 25, 2025, introduces 30 changes...
A recent Windows security update designed to mitigate a privilege escalation vulnerability has inadvertently introduced a new...
A high-severity remote code execution (RCE) vulnerability (CVE-2025-3642) has been identified in Moodle’s EQUELLA repository integration, posing...
A high-severity vulnerability (CVE-2025-3935) affecting ScreenConnect versions 25.2.3 and earlier has been disclosed, involving ASP.NET ViewState code...
Google Chrome recently faced two critical use-after-free (UAF) vulnerabilities that were actively exploited in the wild before...
A widespread phishing campaign targeting WooCommerce store owners has been identified, leveraging fabricated security vulnerability alerts to...
A high-severity Cross-Site Request Forgery (CSRF) vulnerability has been identified in Moodle’s Brickfield tool, tracked as CVE-2025-3638....
Organizations continue to face significant challenges in reducing vulnerability remediation times, with many struggling to prioritize exposures...
The latest Metasploit Framework update introduces significant improvements for Active Directory Certificate Services (AD CS) exploitation, particularly...
Virgin Media is rolling out free router upgrades to customers using older Hub models (Hub 1-3) to...
A recent study by Backslash Security reveals that popular large language models (LLMs) frequently produce code containing...
The SANS Internet Storm Center (ISC) Stormcast for April 25, 2025, highlights critical cybersecurity developments, including SMS...
Germany is accelerating its administrative digitalization efforts, with significant changes to national ID cards and residence permits...
Security teams today face a counterintuitive challenge: the more data they collect, the harder it becomes to...
A critical vulnerability (CVE-2025-46616) has been identified in Quantum StorNext Web GUI API versions prior to 7.2.4,...
A critical SQL injection vulnerability (CVE-2025-46248) has been identified in M A Vinoth Kumar’s Frontend Dashboard, affecting...
A critical vulnerability (CVE-2025-2185) in ALBEDO Telecom’s Net.Time PTP/NTP clock devices could allow attackers to intercept unencrypted...