Chinese Salt Typhoon Hackers Exploit Cisco Flaw CVE-2018-0171 to Target U.S. Telecoms
Cisco has confirmed that a Chinese state-backed hacking group, known as Salt Typhoon, exploited a known security vulnerability (CVE-2018-0171) to […]
Signal Users Targeted in New QR Code Phishing Attacks
Cybercriminals aligned with Russia have been actively exploiting the linked devices feature in Signal, the popular privacy-focused messaging app, to
Golang-Based Malware Uses Telegram to Evade Detection
A Golang-based backdoor is leveraging Telegram for command-and-control (C2) communications, making it harder to detect and mitigate. Cybersecurity researchers at
AWS Users at Risk: whoAMI Attack Enables Remote Code Execution
A new cybersecurity threat called the “whoAMI” attack is putting Amazon Web Services (AWS) users at risk by exploiting name
High-Severity Palo Alto PAN-OS Vulnerability Alert: CVE-2025-0108
Palo Alto Networks has released crucial security updates to fix a high-severity vulnerability in its PAN-OS software that could allow
CVE-2025-24200: Apple Patches Zero-Day Exploit Targeting iPhones
Apple has released out-of-band security updates on Monday to address a critical vulnerability in iOS and iPadOS. This zero-day flaw,
Zimbra Issues Critical Security Patches for SQL Injection, XSS, and SSRF Flaws
Zimbra, a widely used collaboration and email platform, has released a series of critical security updates to patch vulnerabilities that
DeepSeek Under Fire for Transmitting Sensitive Data Without Encryption
A recent security audit of the popular DeepSeek mobile application for Apple iOS has uncovered severe vulnerabilities that pose significant
Critical Trimble Cityworks Flaw Under Attack: CISA Issues Urgent Alert
Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent advisory regarding an actively exploited security vulnerability in Trimble Cityworks,
Critical Veeam Flaw Exposes Backup Systems to Remote Code Execution
Veeam has released security patches to fix a critical vulnerability in its Backup software that could allow attackers to execute
Tata Technologies Suffers Ransomware Attack, Restores IT Services Promptly
Indian multinational tech giant Tata Technologies has suffered a ransomware attack that temporarily disrupted its IT services. The company, a
WhatsApp Users Targeted in Zero-Click Spyware Attack by Israeli Spyware Firm
Meta-owned WhatsApp has revealed a sophisticated cyberespionage campaign that deployed spyware against nearly 90 journalists and civil society members. The
Lightning AI Security Breach: Hidden URL Parameter Could Have Given Hackers Root Access
Cybersecurity researchers have uncovered a critical vulnerability in the Lightning AI Studio development platform that could have enabled remote code
AI Leader DeepSeek Confronts Cybersecurity Risks Amid Rapid Growth
DeepSeek, a Chinese artificial intelligence (AI) startup that has rapidly gained global recognition, has announced temporary restrictions on new user
Ransomware Groups Using SSH Tunneling to Infiltrate Virtualized Networks: Sygnia
Ransomware groups are increasingly targeting VMware ESXi hypervisors using SSH tunneling to maintain persistence and evade detection. This method poses