CVE Alert: CVE-2025-1743
Vulnerability Summary: CVE-2025-1743 A vulnerability, which was classified as critical, was found in zyx0814 Pichome 2.1.0. This affects an unknown...
CVE Alert: CVE-2025-24832
Vulnerability Summary: CVE-2025-24832 Arbitrary file overwrite during home directory recovery due to improper symbolic link handling. The following products are...
CVE Alert: CVE-2025-27399
Vulnerability Summary: CVE-2025-27399 Mastodon is a self-hosted, federated microblogging platform. In versions prior to 4.1.23, 4.2.16, and 4.3.4, when the...
CVE Alert: CVE-2025-1742
Vulnerability Summary: CVE-2025-1742 A vulnerability, which was classified as problematic, has been found in pihome-shc PiHome 2.0. Affected by this...
Fortifying Your Digital Frontier With Web Application Security
In an era where businesses are increasingly reliant on web applications, ensuring their security has become paramount. Web application security...
FBI Confirms Lazarus Group as Bybit Hackers Behind Major Crypto Heist
The FBI has confirmed that the notorious Lazarus Group from North Korea was responsible for the recent massive cryptocurrency heist...
OpenSSF Unveils Comprehensive Security Framework for Open Source Software
The OpenSSF has reached a remarkable milestone with the launch of its new security framework aimed at enhancing the security...
DragonForce Ransomware Targets Saudi Firm, Stealing 6TB of Data
A significant ransomware incident was reported as DragonForce launched an attack on a prominent Saudi firm, leading to the theft...
Chinese Cyber Espionage Surges 150%: Insights from CrowdStrike
In 2024, Chinese cyber espionage operations have risen dramatically, with a reported 150% increase according to CrowdStrike's latest findings. Recent...
Rising Software Vulnerabilities: Average Patch Time Nears Nine Months
In an alarming trend, the average time to fix software vulnerabilities has now reached nearly nine months, according to Veracode’s...
Winos 4.0 Malware: Email Impersonation Attack Targets Taiwan’s Organizations
The Winos 4.0 malware campaign is a significant threat to Taiwan, leveraging email impersonation tactics to target organizations effectively. A...
Spyzie – 518,643 breached accounts
HIBP In February 2025, the spyware service Spyzie suffered a data breach along with sibling spyware services, Spyic and Cocospy....
Orange Romania – 556,557 breached accounts
HIBP In February 2025, the Romanian arm of telecommunications company Orange suffered a data breach which was subsequently published to...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on January 28, 2025. These...
CISA: CISA Releases Eight Industrial Control Systems Advisories
CISA Releases Eight Industrial Control Systems Advisories CISA released eight Industrial Control Systems (ICS) advisories on January 30, 2025. These...
CISA: CISA Releases Fact Sheet Detailing Embedded Backdoor Function of Contec CMS8000 Firmware
CISA Releases Fact Sheet Detailing Embedded Backdoor Function of Contec CMS8000 Firmware CISA released a fact sheet, Contec CMS8000 Contains...
CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Partners with ASD’s ACSC, CCCS, NCSC-UK, and Other International and US Organizations to Release Guidance on Edge Devices
CISA Partners with ASD’s ACSC, CCCS, NCSC-UK, and Other International and US Organizations to Release Guidance on Edge Devices CISA—in...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Nine Industrial Control Systems Advisories
CISA Releases Nine Industrial Control Systems Advisories CISA released nine Industrial Control Systems (ICS) advisories on February 4, 2025. These...
CISA: CISA Adds Five Known Exploited Vulnerabilities to Catalog
CISA Adds Five Known Exploited Vulnerabilities to Catalog CISA has added five vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on...
