FBI Warns: Android Smart Devices Infected By BADBOX 2.0 Malware
The FBI has issued a warning about a dangerous new wave of Android malware known as BADBOX 2.0, which has […]
CVE-2025-20286: Cisco ISE Cloud Vulnerability Affects AWS, Azure and OCI
Cisco has released a critical security update to fix a major vulnerability in its Identity Services Engine (ISE). The flaw,
CVE-2025-37093: HPE StoreOnce Bug Enables Remote Authentication Bypass
Hewlett Packard Enterprise (HPE) has released important security updates to fix eight serious vulnerabilities found in its StoreOnce data backup
CVE-2025-5419: Critical Zero-Day Chrome Flaw Under Active Attack
Google has released an emergency security update for its Chrome browser to fix a high-risk zero-day vulnerability that is already
Three Zero-Day Bugs in Qualcomm Chips Patched After Active Exploits
Qualcomm, a major chipmaker that powers most Android smartphones, has released important security updates to fix three serious zero-day vulnerabilities.
CVE-2025-5054 and CVE-2025-4598: Linux Core Dump Bugs Leak Passwords
Two new security vulnerabilities in popular Linux distributions—Ubuntu, Red Hat Enterprise Linux (RHEL), and Fedora—could allow attackers to access sensitive
CVE-2025-47577: Critical File Upload Vulnerability Found in Wishlist WordPress Plugin
A severe flaw has been discovered in the TI WooCommerce Wishlist plugin, which is used by more than 100,000 WordPress
Microsoft OneDrive File Picker Bug Exposes Entire Cloud Storage to Third-Party Apps
A security flaw has been discovered in Microsoft’s OneDrive File Picker that could allow third-party apps and websites to access
Fake VPN and Browser Installers Drop Winos 4.0 Malware in Stealth Attacks
Researchers from Rapid7 have revealed an ongoing malware campaign that tricks users into installing Winos 4.0, a powerful and stealthy
CISA Warns of Cloud Attacks Targeting Microsoft 365 App Secrets
Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about possible large-scale cyberattacks targeting Software-as-a-Service (SaaS) applications, especially those
CVE-2025-47949: Samlify Vulnerability Allows Admin Account Takeover
A security flaw has been discovered in Samlify, a popular Single Sign-On (SSO) library used in Node.js applications. This critical
Trojanized KeePass Password Manager Targets ESXi Servers
Hackers have been distributing fake versions of the popular KeePass password manager to spread malware and launch ransomware attacks. According
Pwn2Own 2025: Mozilla Patches Critical Firefox Vulnerabilities in Record Time
Mozilla has released urgent security updates for Firefox after two dangerous zero-day vulnerabilities were discovered during the Pwn2Own Berlin 2025
Defendnot Tool Disables Microsoft Defender with Fake Antivirus
A newly discovered tool called Defendnot is making headlines in the cybersecurity world for its ability to turn off Microsoft
CVE-2025-32756: Fortinet Patches FortiVoice Remote Code Execution Flaw
Fortinet has issued patches for a critical zero-day vulnerability, CVE-2025-32756, that was being actively exploited in attacks targeting FortiVoice enterprise