TP-Link Router Vulnerability CVE-2023-33538 Under Active Exploit, Warns CISA
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-priority warning about a serious vulnerability affecting several TP-Link […]
Alert
CISA Warns of SinoTrack GPS Security Bug Allowing Track and Disable Cars
Security researchers have found two major vulnerabilities in SinoTrack GPS tracking devices that put connected vehicles at serious risk. These
CVE-2025-20286: Cisco ISE Cloud Vulnerability Affects AWS, Azure and OCI
Cisco has released a critical security update to fix a major vulnerability in its Identity Services Engine (ISE). The flaw,
Microsoft OneDrive File Picker Bug Exposes Entire Cloud Storage to Third-Party Apps
A security flaw has been discovered in Microsoft’s OneDrive File Picker that could allow third-party apps and websites to access
CVE-2025-47949: Samlify Vulnerability Allows Admin Account Takeover
A security flaw has been discovered in Samlify, a popular Single Sign-On (SSO) library used in Node.js applications. This critical
CVE-2025-32756: Fortinet Patches FortiVoice Remote Code Execution Flaw
Fortinet has issued patches for a critical zero-day vulnerability, CVE-2025-32756, that was being actively exploited in attacks targeting FortiVoice enterprise
Two Critical Bugs in ASUS DriverHub Let Attackers Run Malware Remotely
ASUS has issued important security updates to patch two high-risk vulnerabilities in its DriverHub software that could allow hackers to
SentinelOne EDR Bypassed By Hackers Using EDR Upgrade Flaw
Cyber experts have disclosed a new method that allows hackers to bypass SentinelOne’s Endpoint Detection and Response (EDR) system, putting
CVE-2024-7399: Critical Samsung MagicINFO Server RCE Flaw Exploited
A security flaw in Samsung’s MagicINFO 9 Server is now being actively used by hackers to hijack systems and install
SonicWall SMA Flaws Under Active Attack: Patch Now, Warns CISA
SonicWall has issued a serious warning to users of its Secure Mobile Access (SMA) 100 Series appliances. Two significant security
Warning: Malicious WordPress Plugin Provides Remote Admin Access
WordPress website owners are being targeted by a new malware campaign that disguises itself as a legitimate security plugin. This
Critical Commvault Flaw (CVE-2025-34028) Lets Hackers Execute Code Remotely
A serious vulnerability has been discovered in Commvault Command Center, putting many systems at risk of being fully compromised by
Critical CVE-2025-2492 ASUS Warns of 9.2-Rated AiCloud Vulnerability
ASUS has confirmed a severe security vulnerability affecting several of its routers that have the AiCloud feature enabled. The company
Apache Roller Vulnerability (CVE-2025-24859) Allows Unauthorized Access After Password Reset
A critical security vulnerability has been discovered in Apache Roller, a widely used open-source Java-based blogging server, which puts websites
Pakistan-Linked SideCopy APT Strikes Indian Government Agencies
A well-known hacker group named SideCopy APT is targeting Indian government ministries and critical infrastructure with dangerous cyberattacks. According to