CVE-2025-41244: VMware Zero-Day Exploited in Real Attacks, Patch Released
A critical security flaw in Broadcom VMware Tools and VMware Aria Operations has been actively exploited by a China-linked hacking […]
Alert
CISA Warns of Actively Exploited TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377
CISA has issued a fresh warning for TP-Link router users. On Wednesday, CISA added two serious vulnerabilities impacting TP-Link devices to
Hackers Exploit WinRAR Zero-Day CVE-2025-8088: Patch to Version 7.13 Now
WinRAR, one of the most widely used file archiving tools for Windows, has patched a high-severity flaw tracked as CVE-2025-8088
Microsoft 365 Users Targeted by Fake OAuth Apps Using Tycoon Phishing Kit
Researchers have observed a sharp increase in cyberattacks targeting Microsoft 365 users, using a combination of fake OAuth applications and
AMD Warns of TSA Side-Channel Attacks Impacting Ryzen and EPYC CPUs
Semiconductor giant AMD has issued a security advisory about a new class of speculative execution vulnerabilities known as Transient Scheduler
CVE-2025-20281 & CVE-2025-20282: Cisco ISE Bugs With 10/10 Severity
Cisco has issued urgent security updates to fix two critical remote code execution (RCE) vulnerabilities found in its Identity Services
U.S. on High Alert: Pro-Iranian Hackers Likely to Strike American Networks
The U.S. Department of Homeland Security (DHS) has issued a serious warning about the possibility of cyberattacks on American networks
TP-Link Router Vulnerability CVE-2023-33538 Under Active Exploit, Warns CISA
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-priority warning about a serious vulnerability affecting several TP-Link
CISA Warns of SinoTrack GPS Security Bug Allowing Track and Disable Cars
Security researchers have found two major vulnerabilities in SinoTrack GPS tracking devices that put connected vehicles at serious risk. These
CVE-2025-20286: Cisco ISE Cloud Vulnerability Affects AWS, Azure and OCI
Cisco has released a critical security update to fix a major vulnerability in its Identity Services Engine (ISE). The flaw,
Microsoft OneDrive File Picker Bug Exposes Entire Cloud Storage to Third-Party Apps
A security flaw has been discovered in Microsoft’s OneDrive File Picker that could allow third-party apps and websites to access
CVE-2025-47949: Samlify Vulnerability Allows Admin Account Takeover
A security flaw has been discovered in Samlify, a popular Single Sign-On (SSO) library used in Node.js applications. This critical
CVE-2025-32756: Fortinet Patches FortiVoice Remote Code Execution Flaw
Fortinet has issued patches for a critical zero-day vulnerability, CVE-2025-32756, that was being actively exploited in attacks targeting FortiVoice enterprise
Two Critical Bugs in ASUS DriverHub Let Attackers Run Malware Remotely
ASUS has issued important security updates to patch two high-risk vulnerabilities in its DriverHub software that could allow hackers to
SentinelOne EDR Bypassed By Hackers Using EDR Upgrade Flaw
Cyber experts have disclosed a new method that allows hackers to bypass SentinelOne’s Endpoint Detection and Response (EDR) system, putting