CVE-2025-53786: Exchange Server Flaw Lets Hackers Access Cloud Without Detection
Microsoft has issued a high-severity security warning about a critical vulnerability affecting on-premise Exchange Servers used in hybrid cloud setups. […]
ShinyHunters Target Google in Massive Salesforce CRM Cyberattacks
Google has confirmed that it was affected by a data breach as part of a larger cyberattack campaign targeting Salesforce
Google Patches Actively Exploited Qualcomm Bugs in August Android Update
Google has released its August 2025 Android security update, addressing several serious vulnerabilities — including two high-risk flaws in Qualcomm
Akira Ransomware Exploits SonicWall VPNs in Likely Zero-Day Attack
A new wave of cyberattacks involving the Akira ransomware group has targeted SonicWall SSL VPN devices, even those running the
Microsoft 365 Users Targeted by Fake OAuth Apps Using Tycoon Phishing Kit
Researchers have observed a sharp increase in cyberattacks targeting Microsoft 365 users, using a combination of fake OAuth applications and
Dahua IP Cameras at Risk: CVE-2025-31700 and CVE-2025-31701
Security researchers have uncovered two high-severity vulnerabilities in Dahua smart cameras that could let attackers remotely hijack the devices without
PaperCut Exploited by Hackers Using Remote Code Execution: CISA
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a new warning about a serious vulnerability in PaperCut NG/MF
CVE-2025-24000: Post SMTP Vulnerability & Admin Takeover of WordPress Sites
A security vulnerability in the popular Post SMTP plugin for WordPress has left over 200,000 websites exposed to potential hijacking
Mitel MiVoice MX-ONE Vulnerability Allows Admin Access Without Login
Mitel, a leading provider of business communication solutions, has issued an important security update for its MiVoice MX-ONE platform. The
SysAid Zero-Day: CVE-2025-2775 and CVE-2025-2776 Exploited in the Wild
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about two serious vulnerabilities in the widely
Critical Cisco ISE Flaws Exploited in the Wild, Remote Root Access Without Login
Cisco has issued an updated security advisory confirming that hackers are now actively exploiting multiple severe vulnerabilities in its Identity
CVE-2025-53770: SharePoint Zero-Day Exploited in Ongoing Attacks, Patch Released
Microsoft has released urgent security patches for two critical vulnerabilities in SharePoint Server, one of which is currently being actively
CVE-2025-6558: Google Urgently Fixes Actively Exploited Chrome Zero-Day
Google has released a critical security update for its Chrome browser to fix a serious vulnerability known as CVE-2025-6558, which
AMD Warns of TSA Side-Channel Attacks Impacting Ryzen and EPYC CPUs
Semiconductor giant AMD has issued a security advisory about a new class of speculative execution vulnerabilities known as Transient Scheduler
CISA Adds PHPMailer, Zimbra, and Rails Bugs to KEV Catalog Amid Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert, adding four high-risk security vulnerabilities to its