Silent Fortinet FortiWeb Zero-Day Used to Add Rogue Admins
A serious security warning has been raised for users of Fortinet FortiWeb Web Application Firewall (WAF). Cybersecurity researchers have discovered […]
Microsoft Issues Urgent Fix for Actively Exploited Windows Zero-Day
Microsoft has released its latest Patch Tuesday update, addressing 63 security vulnerabilities across its products. Among them is a Windows
CVE-2025-12480: Triofox Users Warned of Active Exploits
Cybersecurity researchers have uncovered an active exploitation campaign targeting a critical vulnerability in Gladinet’s Triofox, a popular enterprise file-sharing and
CVE-2025-21042: Samsung Zero-Day Exploited to Deploy LANDFALL Spyware
A serious security flaw in Samsung Galaxy smartphones was exploited as a zero-day vulnerability to secretly install a powerful Android
CVE-2024-38197: Microsoft Teams Bug Allows Message Spoofing and Hidden Edits
Microsoft Teams, one of the world’s most widely used collaboration platforms, has recently come under scrutiny after cybersecurity researchers discovered
CVE-2025-5397: Hackers Exploit Jobmonster WordPress Theme to Gain Admin Access
A high-risk security flaw has been discovered in the Jobmonster Job Board WordPress Theme, one of the most popular themes
New VMware Vulnerability CVE-2025-41244 Under Active Exploitation
CISA has issued a serious warning after adding a new VMware vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. The
CISA Warns of Active Exploits Targeting Dassault and XWiki Systems
Cybersecurity agencies have issued warning about active exploitation of multiple severe vulnerabilities in Dassault Systèmes DELMIA Apriso and XWiki. The
Hackers Exploit YouTube: Massive Ghost Network Spreads Malware Through Popular Videos
A massive cyber campaign called the “YouTube Ghost Network” has been exposed, revealing how cybercriminals used over 3,000 YouTube videos
Microsoft WSUS Under Attack: CVE-2025-59287 Exploited in the Wild
Microsoft has released an emergency security update to fix a critical remote code execution (RCE) vulnerability in its Windows Server
CISA Warns of Actively Exploited Adobe AEM Vulnerability (CVE-2025-54253)
CISA has issued a serious warning about a newly discovered security flaw in Adobe Experience Manager (AEM). The vulnerability, tracked
Oracle E-Business Suite Bug CVE-2025-61884 Allows Data Theft Without Login
Oracle has issued a security alert about a newly discovered vulnerability in its widely used Oracle E-Business Suite (EBS). The
CVE-2025-11371 Under Attack: Gladinet and TrioFox Servers Exploited in the Wild
Cybersecurity firm Huntress has issued a critical security warning after detecting active exploitation of a zero-day vulnerability affecting Gladinet CentreStack
Meteobridge Security Flaw CVE-2025-4008 Under Active Attack, Patch Now
CISA has flagged a new high-severity vulnerability in Meteobridge devices that is currently being exploited in real-world attacks. The flaw,
CVE-2025-10725: Red Hat OpenShift AI Bug Exposes Hybrid Cloud to Attack
A security flaw in Red Hat OpenShift AI has raised serious concerns for organizations running artificial intelligence workloads in hybrid