oracle
-
Critical Exposure: 950 Oracle E-Business Suite Instances Identified Amid Active Exploitation of CVE-2026-46817
Recent intelligence from The Shadowserver Foundation has revealed a significant expansion in the visible attack surface for Oracle E-Business Suite…
Read More » -
Critical Security Advisory: High-Severity Memory and Access Vulnerabilities in Citrix NetScaler ADC and Gateway
Citrix has issued an urgent security bulletin targeting a cluster of high-severity vulnerabilities discovered within its NetScaler ADC and NetScaler…
Read More » -
Supply Chain Alert: Shai-Hulud/Hades Malware Targets Leo/RStreams Ecosystem
A sophisticated supply-chain attack has been identified targeting the Leo/RStreams ecosystem, an AWS-native event streaming SDK frequently utilized in Kinesis,…
Read More » -
FortiBleed: The Industrial-Scale Exploitation of 70,000 Fortinet Firewalls via Offline Cracking and Legacy Hashes
A massive cyber espionage operation, colloquially termed “FortiBleed,” has fundamentally shaken the enterprise security landscape. The campaign has successfully compromised…
Read More » -
Critical Alert: Active Exploitation of Authentication Bypass in Oracle PeopleSoft (CVE-2026-35273)
The Cybersecurity and Infrastructure Security Agency (CISA) has escalated its warning regarding a critical security flaw within the Oracle PeopleSoft…
Read More » -
Critical Alert: CISA Adds Oracle WebLogic Vulnerability (CVE-2024-21182) to Known Exploited Vulnerabilities Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially escalated the threat level for enterprise environments by adding CVE-2024-21182…
Read More » -
The “Quantum Patriot” Pipeline: How a Lone Actor Leveraged Jailbroken Gemini for Multi-Vector Cybercrime
A sophisticated, long-running campaign has demonstrated the dangerous potential of “frontier model” exploitation, where a single threat actor successfully merged…
Read More » -
Breaking the Vault: Anatomy of the Salesforce Marketing Cloud Cryptographic and Injection Flaws
Salesforce Marketing Cloud (SFMC) recently orchestrated a critical patching cycle to address a cluster of high-impact vulnerabilities. These flaws represented…
Read More » -
Bissa Scanner: AI-Driven Mass Exploitation of React2Shell (CVE-2025-55182) Unveiled
A highly structured, industrial-scale exploitation campaign is currently targeting internet-facing infrastructure by weaponizing React2Shell (CVE-2025-55182). Unlike traditional “smash-and-grab” attacks, this…
Read More » -
OpenAI Unleashes GPT-5.4-Cyber to Fortify Global Digital Defenses
In a groundbreaking expansion of its cybersecurity initiative, OpenAI has announced worldwide access to its GPT-5.4-Cyber model through the Trusted…
Read More » -
Exploitation of CVE-2026-39987 in Marimo: A Multi-Stage Attack Campaign Targeting AI/ML Developer Infrastructure
Threat actors are actively exploiting CVE-2026-39987, a critical pre-authentication remote code execution (RCE) vulnerability in the marimo Python notebook platform,…
Read More » -
Critical Apache Tomcat Security Updates Patch Three High-Risk Vulnerabilities
The Apache Software Foundation has issued critical security updates for Tomcat to address three newly disclosed vulnerabilities affecting widely deployed…
Read More » -
Microsoft Warns Storm-1175 Exploiting Web-Facing Flaws to Deploy Medusa Ransomware
Microsoft is warning that a fast‑moving threat actor it tracks as Storm-1175 is aggressively exploiting vulnerabilities in internet‑exposed systems to…
Read More » -
Leak Bazaar Converts Stolen Corporate Data Into Organized Criminal Marketplace
A new cybercriminal service named “Leak Bazaar” has emerged on the Russian-speaking TierOne forum, advertised by user Snow of SnowTeam…
Read More » -
Oracle Fixes High-Severity RCE Vulnerability Affecting Identity and Web Services Platforms
Oracle recently issued an urgent security alert regarding a critical Remote Code Execution (RCE) flaw that impacts both Oracle Identity…
Read More » -
Barts Health NHS Reveals Data Breach Linked to Oracle Zero-Day Exploited by Clop Ransomware
Barts Health NHS Trust has disclosed a significant data breach affecting patient and staff information after the Cl0p ransomware gang…
Read More » -
CISA Issues Warning as Hackers Target Oracle Identity Manager RCE Flaw
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a new Oracle vulnerability to its Known Exploited Vulnerabilities (KEV)…
Read More »