TP-Link Router Vulnerability CVE-2023-33538 Under Active Exploit, Warns CISA
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-priority warning about a serious vulnerability affecting several TP-Link […]
DevOps Alert: Grafana Exploit Exposes Over 46,000 Servers to Account Takeover
A newly discovered vulnerability in Grafana, the popular open-source analytics and monitoring tool, is putting thousands of organizations at serious
Apple Patches Zero-Click iMessage Flaw Exploited to Spy on Journalists
Apple has patched a dangerous zero-click security flaw in its Messages app that was actively used to spy on journalists
CVE-2025-32711: AI-Powered Microsoft 365 Copilot Hit by Zero-Click Flaw
A flaw in Microsoft 365 Copilot, named EchoLeak, has raised serious concerns about the safety of AI-powered workplace tools. The
CISA Warns of SinoTrack GPS Security Bug Allowing Track and Disable Cars
Security researchers have found two major vulnerabilities in SinoTrack GPS tracking devices that put connected vehicles at serious risk. These
Serious Google Security Flaw Could Reveal Your Phone Number to Hackers
A critical security vulnerability in Google’s account recovery system could have allowed attackers to uncover phone numbers linked to any
CVE-2025-24016: Two Botnets Hijack Wazuh Servers in Latest Mirai Malware Wave
Hackers are actively exploiting a major vulnerability in the Wazuh Server to deploy two different Mirai-based botnets, leading to large-scale
FBI Warns: Android Smart Devices Infected By BADBOX 2.0 Malware
The FBI has issued a warning about a dangerous new wave of Android malware known as BADBOX 2.0, which has
CVE-2025-20286: Cisco ISE Cloud Vulnerability Affects AWS, Azure and OCI
Cisco has released a critical security update to fix a major vulnerability in its Identity Services Engine (ISE). The flaw,
CVE-2025-37093: HPE StoreOnce Bug Enables Remote Authentication Bypass
Hewlett Packard Enterprise (HPE) has released important security updates to fix eight serious vulnerabilities found in its StoreOnce data backup
CVE-2025-5419: Critical Zero-Day Chrome Flaw Under Active Attack
Google has released an emergency security update for its Chrome browser to fix a high-risk zero-day vulnerability that is already
Three Zero-Day Bugs in Qualcomm Chips Patched After Active Exploits
Qualcomm, a major chipmaker that powers most Android smartphones, has released important security updates to fix three serious zero-day vulnerabilities.
CVE-2025-5054 and CVE-2025-4598: Linux Core Dump Bugs Leak Passwords
Two new security vulnerabilities in popular Linux distributions—Ubuntu, Red Hat Enterprise Linux (RHEL), and Fedora—could allow attackers to access sensitive
CVE-2025-47577: Critical File Upload Vulnerability Found in Wishlist WordPress Plugin
A severe flaw has been discovered in the TI WooCommerce Wishlist plugin, which is used by more than 100,000 WordPress
Microsoft OneDrive File Picker Bug Exposes Entire Cloud Storage to Third-Party Apps
A security flaw has been discovered in Microsoft’s OneDrive File Picker that could allow third-party apps and websites to access