May 2025 Patch Tuesday: Zero-Days and Critical Bugs in Windows, Azure
Microsoft’s May 2025 Patch Tuesday update addresses 78 security flaws, including five zero-day vulnerabilities that are currently being exploited by […]
Two Critical Bugs in ASUS DriverHub Let Attackers Run Malware Remotely
ASUS has issued important security updates to patch two high-risk vulnerabilities in its DriverHub software that could allow hackers to
Bluetooth 6.1 Improves User Privacy with Smarter Address Randomization
The Bluetooth Special Interest Group (SIG) has officially announced the release of Bluetooth Core Specification 6.1, marking a major upgrade
UN Launches UNIDIR Cyber-Attack Framework to Simplify Cyber Attack Analysis
The United Nations (UN) has launched a new cybersecurity assessment tool called the UNIDIR Intrusion Path framework, designed to help
SentinelOne EDR Bypassed By Hackers Using EDR Upgrade Flaw
Cyber experts have disclosed a new method that allows hackers to bypass SentinelOne’s Endpoint Detection and Response (EDR) system, putting
CVE-2024-7399: Critical Samsung MagicINFO Server RCE Flaw Exploited
A security flaw in Samsung’s MagicINFO 9 Server is now being actively used by hackers to hijack systems and install
Microsoft Adopts Passwordless Sign-In for All New Accounts in 2025
Microsoft has announced that all new Microsoft accounts will now be passwordless by default. This means users creating new accounts
SonicWall SMA Flaws Under Active Attack: Patch Now, Warns CISA
SonicWall has issued a serious warning to users of its Secure Mobile Access (SMA) 100 Series appliances. Two significant security
Warning: Malicious WordPress Plugin Provides Remote Admin Access
WordPress website owners are being targeted by a new malware campaign that disguises itself as a legitimate security plugin. This
Proton Mail Banned in India After AI Powered Deepfake Email Scandal
In a significant move, the Karnataka High Court has directed the Indian government to block access to Proton Mail, a
Google: Nearly Half of 2024’s Zero-Day Exploits Targeted Security Tools
Google has revealed that 75 zero-day vulnerabilities were actively exploited by cyber attackers in 2024. This marks a decrease from
Kali Linux Update Failures: New Signing Key Installation Guide
Offensive Security (OffSec), the team behind Kali Linux, has issued an important warning to all users: update failures will happen
New WooCommerce Phishing Attack Installs Malware on WordPress Websites
A new phishing campaign is targeting WooCommerce admins by sending fake security alerts. The emails trick users into downloading a
Zero-Day SAP Vulnerability CVE-2025-31324 Under Active Attack, Patch Now!
A newly discovered vulnerability in SAP NetWeaver is being actively exploited by cybercriminals to plant malicious web shells and deploy
Critical Commvault Flaw (CVE-2025-34028) Lets Hackers Execute Code Remotely
A serious vulnerability has been discovered in Commvault Command Center, putting many systems at risk of being fully compromised by