Sitecore CVE-2025-53690: CISA Warns of Critical Flaw Allowing Remote Code Execution
CISA has issued an urgent warning for organizations using Sitecore. Federal Civilian Executive Branch (FCEB) agencies have been ordered to […]
CISA Warns of Actively Exploited TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377
CISA has issued a fresh warning for TP-Link router users. On Wednesday, CISA added two serious vulnerabilities impacting TP-Link devices to
Palo Alto Networks Confirms Salesforce Data Breach After OAuth Token Theft
Palo Alto Networks has confirmed a data breach that exposed customer information and support tickets after cyber attackers gained unauthorized
CVE-2025-49870: WordPress Paid Membership Plugin Users at Risk from SQL Injection
A new high-risk security flaw has been discovered in the WordPress Paid Membership Subscriptions plugin, a tool widely used to
WhatsApp Security Alert: Critical iOS and macOS Bug Fixed (CVE-2025-55177)
WhatsApp has rolled out an urgent security update after researchers discovered a dangerous zero-click exploit targeting iOS and macOS devices.
FreePBX Zero-Day Exploit Hits Servers, Emergency Patch Released
The Sangoma FreePBX Security Team has issued an urgent warning about a dangerous zero-day vulnerability in FreePBX. Attackers are already
Salesforce Data Breach: Salesloft OAuth Exploit via Drift AI App
A major cybersecurity incident has shaken the SaaS ecosystem as hackers exploited a security gap in Salesloft’s Drift AI chat
Docker Desktop Vulnerability CVE-2025-9074 Rated 9.3 CVSS: Update Immediately
Docker has released an urgent security update to fix a critical vulnerability in Docker Desktop for Windows and macOS. The
Hackers Exploit VPS to Bypass Security and Compromise SaaS Accounts
Experts have warned that hackers are increasingly using virtual private servers (VPS) to break into software-as-a-service (SaaS) accounts. A new
CVE-2025-43300: Apple Patches Zero-Day Exploited in Targeted iPhone and Mac Attacks
Apple has rolled out urgent security updates for iOS, iPadOS, and macOS to patch a critical zero-day vulnerability actively exploited
Microsoft August 2025 Update Breaks Windows Reset and Recovery Tools
Microsoft has officially warned users that the August 2025 Windows security updates are causing serious issues with system recovery and
Cisco Patches Critical FMC RADIUS Flaw (CVE-2025-20265) with CVSS 10.0 Rating
Cisco has released critical security updates to address a maximum-severity flaw in its Secure Firewall Management Center (FMC) Software. The
CVE-2025-25256: Fortinet Warns of Critical FortiSIEM Vulnerability With Exploit in the Wild
Fortinet has issued a critical security alert regarding a severe vulnerability in its FortiSIEM product. The flaw, identified as CVE-2025-25256,
Microsoft Sets End-of-Support Date for Windows 11 23H2 Home and Pro Editions
Microsoft has officially announced that Windows 11 version 23H2 for Home and Pro editions will reach its end of support
Hackers Exploit WinRAR Zero-Day CVE-2025-8088: Patch to Version 7.13 Now
WinRAR, one of the most widely used file archiving tools for Windows, has patched a high-severity flaw tracked as CVE-2025-8088