Apache Tika Hit by Critical XXE Bug CVE-2025-66516
A major security warning has been issued for Apache Tika, a widely used tool for content detection and file parsing. […]
Microsoft Finally Patches High-Risk LNK File Vulnerability
Microsoft has quietly fixed a long-standing security flaw in Windows that was actively exploited by multiple threat groups for several
India Mandates Sanchar Saathi App on All New Smartphones
In a major move to strengthen telecom security, the Government of India has ordered all mobile phone manufacturers to pre-install
OpenPLC ScadaBR XSS Exploit CVE-2021-26829: CISA Issues Warning
CISA has added a newly confirmed, actively exploited vulnerability in OpenPLC ScadaBR to its Known Exploited Vulnerabilities (KEV) catalog. This
Microsoft Strengthens Entra ID Login Security with 2026 CSP Rules
Microsoft has announced a major security upgrade coming to Microsoft Entra ID sign-ins in 2026. The company will update its
ASUS Fixes Critical AiCloud Router Flaw CVE-2025-59366
ASUS has released an urgent security update to fix nine major vulnerabilities, including a critical authentication bypass flaw that affects
Oracle Zero-Day (CVE-2025-61757) Under Active Exploitation, CISA Issues Alert
CISA has issued an urgent warning about a critical zero-day vulnerability in Oracle Identity Manager, a widely used enterprise identity
Grafana Fixes High-Risk CVE-2025-41115 Vulnerability in SCIM Module
Grafana has released an urgent set of security patches to fix a critical vulnerability rated CVSS 10.0, the highest severity
Cloudflare’s Worst Outage in 6 Years Disrupts Global Internet Traffic
Cloudflare, one of the world’s largest internet infrastructure providers, faced its most serious outage in more than six years on
LinkedIn Phishing: A New Threat to Businesses
Phishing attacks are no longer limited to emails. Today, almost one in three phishing attacks take place on non-email channels
$220M Cyberattack Hits JLR: Production Halt and Major Losses
Jaguar Land Rover (JLR), the iconic British luxury carmaker, has revealed that the massive cyberattack it suffered earlier this year
Silent Fortinet FortiWeb Zero-Day Used to Add Rogue Admins
A serious security warning has been raised for users of Fortinet FortiWeb Web Application Firewall (WAF). Cybersecurity researchers have discovered
Microsoft Issues Urgent Fix for Actively Exploited Windows Zero-Day
Microsoft has released its latest Patch Tuesday update, addressing 63 security vulnerabilities across its products. Among them is a Windows
CVE-2025-12480: Triofox Users Warned of Active Exploits
Cybersecurity researchers have uncovered an active exploitation campaign targeting a critical vulnerability in Gladinet’s Triofox, a popular enterprise file-sharing and
CVE-2025-21042: Samsung Zero-Day Exploited to Deploy LANDFALL Spyware
A serious security flaw in Samsung Galaxy smartphones was exploited as a zero-day vulnerability to secretly install a powerful Android