DeepSeek Under Fire for Transmitting Sensitive Data Without Encryption
A recent security audit of the popular DeepSeek mobile application for Apple iOS has uncovered severe vulnerabilities that pose significant […]
Critical Trimble Cityworks Flaw Under Attack: CISA Issues Urgent Alert
Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent advisory regarding an actively exploited security vulnerability in Trimble Cityworks,
Critical Veeam Flaw Exposes Backup Systems to Remote Code Execution
Veeam has released security patches to fix a critical vulnerability in its Backup software that could allow attackers to execute
Tata Technologies Suffers Ransomware Attack, Restores IT Services Promptly
Indian multinational tech giant Tata Technologies has suffered a ransomware attack that temporarily disrupted its IT services. The company, a
WhatsApp Users Targeted in Zero-Click Spyware Attack by Israeli Spyware Firm
Meta-owned WhatsApp has revealed a sophisticated cyberespionage campaign that deployed spyware against nearly 90 journalists and civil society members. The
Lightning AI Security Breach: Hidden URL Parameter Could Have Given Hackers Root Access
Cybersecurity researchers have uncovered a critical vulnerability in the Lightning AI Studio development platform that could have enabled remote code
AI Leader DeepSeek Confronts Cybersecurity Risks Amid Rapid Growth
DeepSeek, a Chinese artificial intelligence (AI) startup that has rapidly gained global recognition, has announced temporary restrictions on new user
Ransomware Groups Using SSH Tunneling to Infiltrate Virtualized Networks: Sygnia
Ransomware groups are increasingly targeting VMware ESXi hypervisors using SSH tunneling to maintain persistence and evade detection. This method poses
J-magic Backdoor: Juniper Routers Under Attack by Magic Packet Exploit
Juniper Networks, a key provider of enterprise-grade networking solutions, has become the focal point of a sophisticated cyber campaign labeled
CISA Warns of Active Exploitation of Five-Year-Old jQuery Vulnerability
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added a medium-severity cross-site scripting (XSS) vulnerability, CVE-2020-11023, to its
PANdora’s Box: Palo Alto Firewall Secure Boot Bypass and Firmware Exploits
An in-depth evaluation of three firewall models from Palo Alto Networks has exposed significant vulnerabilities, ranging from Secure Boot bypass
Zero-Click Exploit in Google Messages Affecting Galaxy S23 and S24 Models
A security flaw affecting Samsung smartphones has been uncovered, posing a significant risk to user safety. Cybersecurity researchers have detailed
CISA Warns of Active Exploitation in Mitel and Oracle Systems
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about three critical vulnerabilities impacting Mitel MiCollab and
Draft DPDP Rules: What They Mean for Data Protection and Businesses in India
The Indian government has unveiled a draft version of the Digital Personal Data Protection (DPDP) Rules for public consultation, signaling
LDAPNightmare Exploit Targets Windows Servers with DoS and RCE
A proof-of-concept (PoC) exploit, codenamed LDAPNightmare, has been unveiled for a now-patched security vulnerability in Windows’ Lightweight Directory Access Protocol