SolarWinds Patches Critical CVE-2025-26399 Remote Code Execution Flaw
SolarWinds has released an urgent hotfix to address a critical security vulnerability in its Web Help Desk software. The flaw, […]
Microsoft Fixes Critical Entra ID Flaw CVE-2025-55241 Allowing Global Admin Impersonation
Microsoft has released a patch for a critical security vulnerability in Entra ID (formerly Azure Active Directory) that could have
ChatGPT ShadowLeak Flaw: Gmail Data Theft Through Hidden Prompt Injection
A serious security flaw has been discovered in OpenAI’s ChatGPT Deep Research agent, raising major concerns about the safety of
Fortra Patches Critical CVSS 10.0 Flaw in GoAnywhere MFT (CVE-2025-10035)
Fortra, the company behind the widely used GoAnywhere Managed File Transfer (MFT) software, has released a critical security patch to
Google Patches Chrome Zero-Day CVE-2025-10585 Exploited in Active Attacks
Google has released an update for its Chrome browser to patch four security flaws, including a critical zero-day vulnerability already
CVE-2025-43300: Apple Issues Backported Fix After Spyware Exploitation
Apple has backported fixes for a major vulnerability that was actively exploited in sophisticated spyware attacks. The flaw, identified as
Critical Samsung Android Zero-Day Vulnerability CVE-2025-21043 Patched
Samsung has rolled out its September 2025 Android Security Maintenance Release (SMR), fixing several vulnerabilities, including a critical zero-day flaw
Critical DELMIA Apriso RCE Flaw CVE-2025-5086 Under Attack, CISA Alerts
CISA has issued a warning about a newly discovered and actively exploited vulnerability in Dassault Systèmes DELMIA Apriso Manufacturing Operations Management (MOM)
Microsoft Patch Tuesday September 2025 Including CVSS 10.0 Azure Flaw
Microsoft has rolled out its latest Patch Tuesday security update for September 2025, addressing 80 vulnerabilities across Windows, Azure, and
Plex Data Breach 2025: Users Told to Reset Passwords After Hacking Attack
Plex, one of the most popular media streaming platforms, has issued a warning to its global users after discovering a
Sitecore CVE-2025-53690: CISA Warns of Critical Flaw Allowing Remote Code Execution
CISA has issued an urgent warning for organizations using Sitecore. Federal Civilian Executive Branch (FCEB) agencies have been ordered to
CISA Warns of Actively Exploited TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377
CISA has issued a fresh warning for TP-Link router users. On Wednesday, CISA added two serious vulnerabilities impacting TP-Link devices to
Palo Alto Networks Confirms Salesforce Data Breach After OAuth Token Theft
Palo Alto Networks has confirmed a data breach that exposed customer information and support tickets after cyber attackers gained unauthorized
CVE-2025-49870: WordPress Paid Membership Plugin Users at Risk from SQL Injection
A new high-risk security flaw has been discovered in the WordPress Paid Membership Subscriptions plugin, a tool widely used to
WhatsApp Security Alert: Critical iOS and macOS Bug Fixed (CVE-2025-55177)
WhatsApp has rolled out an urgent security update after researchers discovered a dangerous zero-click exploit targeting iOS and macOS devices.