Windows Vulnerability Threats: Shortcut Flaw Exploited by 11 State-Sponsored Groups
Discover how a critical Windows vulnerability known as ZDI-CAN-25373 has been exploited by multiple state-sponsored groups for cyber-espionage since 2017....
vulnerability
CISA Warns: Fortinet Vulnerability Exploited in Ransomware Attacks
The recent warning from CISA highlights a critical vulnerability in Fortinet products that is currently being exploited in ransomware attacks....
iOS 18.3.2: Important Update to Patch Actively Exploited WebKit Vulnerability
iOS 18.3.2 and iPadOS 18.3.2 have been released by Apple to address a critical WebKit vulnerability that cybercriminals have been...
Critical Vulnerability in Chaty Pro Plugin Exposes 18,000 WordPress Sites
A serious security vulnerability in the Chaty Pro plugin is putting around 18,000 WordPress sites at risk. This could enable...
XSS Vulnerability in Essential Addons for Elementor: A Critical Alert
A significant XSS vulnerability has emerged in Essential Addons for Elementor, affecting over 2 million WordPress sites and demanding immediate...
Critical Jupiter X Core Plugin Vulnerability Exposes 90,000 WordPress Sites
A critical vulnerability in the Jupiter X Core WordPress plugin, affecting over 90,000 sites, has raised serious security concerns among...
WordPress ASE Plugin Vulnerability: A Critical Threat to Site Security
A critical vulnerability in the WordPress Admin and Site Enhancements (ASE) plugin poses a significant risk to site security, affecting...
Backdoor Vulnerability in Contec Patient Monitors Exposed by CISA
The US Cybersecurity and Infrastructure Security Agency (CISA) has unveiled a serious backdoor vulnerability in the firmware of Contec CMS8000...
API Supply Chain Attacks: Major Risks for Millions of Airline Users
API supply chain attacks pose serious risks for millions of airline users. A recently uncovered vulnerability in a well-known travel...
Cisco Addresses Critical CVE-2025-20156 Vulnerability in Meeting Management Tool
Cisco has identified a serious privilege escalation vulnerability in its Meeting Management tool, known as CVE-2025-20156, that poses a risk...
Subaru Bug Exposes Vulnerability for Remote Vehicle Tracking and Hijacking
A recently discovered Subaru bug has revealed vulnerabilities in vehicle infotainment systems that could allow for remote tracking and hijacking...
Critical Zero-Day Vulnerability in Fortinet Firewalls Exposed: CVE-2024-55591
Fortinet has identified a critical zero-day vulnerability affecting its FortiGate firewalls, designated CVE-2024-55591, with a CVSS score of 9.6. This...
Fake PoC Exploit: A New Threat for Security Researchers from Infostealer
Security researchers face an evolving landscape of cyber threats, and a recent fake proof-of-concept (PoC) exploit highlights a critical risk:...
Critical Vulnerability Exploited in ProjectSend: What You Need to Know
A critical vulnerability has been exploited in public-facing instances of ProjectSend, a popular open-source file-sharing application. According to VulnCheck, a...
Discovering Five Privilege Escalation Vulnerabilities in Ubuntu’s needrestart Utility
In recent findings, five privilege escalation vulnerabilities have been identified within the needrestart utility on Ubuntu Server. These flaws can...
Palo Alto Networks Patches Critical Firewall Vulnerability with Urgent Security Update
Palo Alto Networks has released a crucial security patch addressing a critical vulnerability affecting its firewall management interfaces, emphasizing the...
Palo Alto Networks Zero-Day Vulnerability Actively Exploited: A Critical Security Advisory
Palo Alto Networks has issued a critical security advisory regarding a newly identified zero-day vulnerability affecting its firewall management interfaces,...
Zero-Day Vulnerability Discovered by watchTowr in Fortinet Products
In an alarming revelation, watchTowr has identified a new zero-day vulnerability impacting Fortinet’s cybersecurity products, highlighting a serious security risk....
Citrix Zero-Day Vulnerability Enables Remote Code Execution: What You Need to Know
A critical new Citrix zero-day vulnerability poses a threat by allowing unauthenticated remote code execution (RCE) through Citrix’s Session Recording...
AI-Driven Discovery: Google Researchers Identify First Vulnerability
In groundbreaking news, Google researchers from Project Zero and DeepMind have successfully identified their first real-world vulnerability leveraging artificial intelligence...
LiteSpeed Cache Plugin Vulnerability Exposes Admin Access Risk
A newly discovered LiteSpeed Cache plugin vulnerability allows unauthorized users to gain admin access, impacting over 6 million WordPress sites....
Fortinet Confirms Exploit of Critical CVE-2024-47575 in FortiManager
Fortinet has confirmed the serious exploitation of a critical zero-day vulnerability, CVE-2024-47575, affecting its FortiManager network management solution. Fortinet has...
macOS Vulnerability Exposes User Data: Microsoft Alert on HM Surf Threat
Microsoft has identified a significant macOS vulnerability known as HM Surf, potentially exposing sensitive user data to attackers. Microsoft has...
October Patch Tuesday: Microsoft Addresses Five Zero-Day Vulnerabilities
In October's Patch Tuesday update, Microsoft has effectively mitigated two zero-day vulnerabilities under active exploitation and three publicly reported issues,...
