Cisco AsyncOS Zero-Day Actively Exploited in Email Security Appliances
Cisco has issued a serious warning after discovering active cyberattacks exploiting a zero-day vulnerability in its AsyncOS software, which powers […]
Attackers Target Fortinet FortiGate Via SAML SSO Authentication Bypass
Fortinet FortiGate devices are currently under active cyberattacks, with threat actors exploiting newly disclosed critical vulnerabilities related to SAML Single
Apple Fixes Actively Exploited WebKit Zero-Day Flaws Across iOS and macOS
Apple has released critical security updates for its entire ecosystem after confirming that two serious WebKit vulnerabilities were actively exploited
Gogs Zero-Day Exploited: 700+ Servers Hacked Worldwide
A newly discovered zero-day vulnerability in Gogs, a popular self-hosted Git service, is being actively exploited in the wild, putting
Microsoft Patch Tuesday: 56 Bugs Fixed, Including Two Zero-Days
Microsoft has released its final security update of 2025, delivering patches for 56 security flaws across the Windows ecosystem. This
CVE-2025-6389: Sneeit RCE Exploited as Frost Botnet Uses CVE-2025-2611
A new wave of cyberattacks is hitting WordPress websites and ICTBroadcast servers after two major security flaws were publicly exposed.
Apache Tika Hit by Critical XXE Bug CVE-2025-66516
A major security warning has been issued for Apache Tika, a widely used tool for content detection and file parsing.
Microsoft Finally Patches High-Risk LNK File Vulnerability
Microsoft has quietly fixed a long-standing security flaw in Windows that was actively exploited by multiple threat groups for several
India Mandates Sanchar Saathi App on All New Smartphones
In a major move to strengthen telecom security, the Government of India has ordered all mobile phone manufacturers to pre-install
OpenPLC ScadaBR XSS Exploit CVE-2021-26829: CISA Issues Warning
CISA has added a newly confirmed, actively exploited vulnerability in OpenPLC ScadaBR to its Known Exploited Vulnerabilities (KEV) catalog. This
Microsoft Strengthens Entra ID Login Security with 2026 CSP Rules
Microsoft has announced a major security upgrade coming to Microsoft Entra ID sign-ins in 2026. The company will update its
ASUS Fixes Critical AiCloud Router Flaw CVE-2025-59366
ASUS has released an urgent security update to fix nine major vulnerabilities, including a critical authentication bypass flaw that affects
Oracle Zero-Day (CVE-2025-61757) Under Active Exploitation, CISA Issues Alert
CISA has issued an urgent warning about a critical zero-day vulnerability in Oracle Identity Manager, a widely used enterprise identity
Grafana Fixes High-Risk CVE-2025-41115 Vulnerability in SCIM Module
Grafana has released an urgent set of security patches to fix a critical vulnerability rated CVSS 10.0, the highest severity
Cloudflare’s Worst Outage in 6 Years Disrupts Global Internet Traffic
Cloudflare, one of the world’s largest internet infrastructure providers, faced its most serious outage in more than six years on