vulnerabilities
-
Microsoft Warns Storm-1175 Exploiting Web-Facing Flaws to Deploy Medusa Ransomware
Microsoft is warning that a fast‑moving threat actor it tracks as Storm-1175 is aggressively exploiting vulnerabilities in internet‑exposed systems to…
Read More » -
Apache Traffic Server Flaw Allowed Attackers to Trigger Denial-of-Service Attacks
The Apache Software Foundation has released critical security updates to address two vulnerabilities in Apache Traffic Server (ATS). Disclosed on…
Read More » -
Google’s Bug Bounty Program Hits Record $17 Million in 2025 Payouts
Google announced a record-breaking year for its Vulnerability Reward Program (VRP) in 2025, paying out over $17 million to ethical…
Read More » -
2,000+ FortiClient EMS Instances Exposed Online as Attackers Exploit Active RCE Flaw
Cybersecurity researchers have issued an urgent warning for organizations using Fortinet’s FortiClient Enterprise Management Server (EMS). Over 2,000 instances of…
Read More » -
14,000+ F5 BIG-IP APM Instances Exposed Online as Attackers Exploit RCE Vulnerability
Cybersecurity researchers have identified a massive attack surface involving F5 BIG-IP Access Policy Manager (APM) devices. Following a critical severity…
Read More » -
CISA Includes TrueConf Security Flaw in KEV Catalog After Exploitation in the Wild
The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical security flaw affecting the TrueConf Client to its…
Read More » -
Microsoft Forces Unmanaged Windows 11 Devices to Upgrade to Version 24H2
Microsoft has officially launched an automated, machine-learning-driven rollout for Windows 11, version 25H2, targeting unmanaged systems. As part of its…
Read More » -
New Progress ShareFile Flaws Expose Servers to Unauthorized Remote Takeover
Security researchers at watchTowr Labs have disclosed a critical exploit chain in the Progress ShareFile Storage Zone Controller. The vulnerabilities,…
Read More » -
TP-Link Router Flaws Allowed Attackers to Launch DoS Attacks and Cause Crashes
TP-Link has recently addressed a batch of severe vulnerabilities affecting the Tapo C520WS security camera system. Security cameras are critical…
Read More » -
OpenSSH 10.3 Released With Patch for Shell Injection and Other Security Bugs
The OpenSSH project has released version 10.3 alongside its portable version 10.3p1. This major update followed a brief testing phase…
Read More » -
Iranian Hacker Group Handal Claims Breach of Israeli Defense Firm
The international cybersecurity community has been notified about a significant data breach targeting Israeli military infrastructure. Handala, identified as an…
Read More » -
Top 10 Best Dynamic Application Security Testing (DAST) Platforms in 2026
In today’s fast-paced software development world, where applications are released at an unprecedented rate, ensuring their security is more critical…
Read More » -
Cisco Faces Alleged Data Leak as ShinyHunters Claims Responsibility
Cisco is actively dealing with a major cybersecurity incident after threat actors breached its internal development networks. The notorious hacking…
Read More » -
Google Warns of New Chrome Zero-Day Under Active Exploitation — Users Urged to Update Immediately
Google has released an urgent security update for Chrome desktop (version 146.0.7680.177/.178 for Windows/Mac, 146.0.7680.177 for Linux) to patch 21…
Read More » -
Claude AI Uncovers Zero-Day RCE Vulnerabilities in Vim and Emacs
Security researchers at Calif recently demonstrated the evolving power of artificial intelligence in vulnerability research by using Claude AI to…
Read More » -
Notepad++ v8.9.3 Released With Fixes for cURL Security Flaw and Crash Bugs
Notepad++ version 8.9.3 is now available, bringing crucial fixes for a significant security flaw in the cURL library alongside resolving…
Read More » -
India Set to Ban Hikvision, TP-Link Devices in April
Commencing April 1, 2026, the Indian government will implement a nationwide prohibition on the sale of internet-connected CCTV cameras manufactured…
Read More »