Executive Summary A critical zero-day vulnerability in Sitecore, tracked as CVE-2025-53690, has been exploited in the wild to deploy the…
The biggest day of the month is here! This Patch Tuesday, Microsoft has released patches for 81 flaws, including 9…
Executive Summary Salt Typhoon, a China-linked advanced persistent threat (APT) group, has been conducting a persistent cyber-espionage campaign since at…
Executive Summary FortiGuard Labs has uncovered a new malware strain dubbed Gayfemboy, a Mirai successor that aggressively targets routers and…
A novel attack technique named MadeYouReset has been discovered, targeting multiple implementations of the HTTP/2 protocol. This flaw, sitting at a comfortable…
August's Patch Tuesday has arrived! This month, Microsoft has released patches for 107 flaws, including 13 critical bugs and one…
A novel attack technique dubbed "Ghost Calls" has emerged, exploiting web conferencing platforms like Zoom, Microsoft Teams, and Google Meet…
Security researchers have recently demonstrated a significantly improved exploit for the Retbleed CPU vulnerability, highlighting the ongoing risks posed by…
A recently identified command injection vulnerability, CVE-2025-53652, in the Jenkins Git Parameter plugin puts approximately 15,000 Jenkins servers at risk of…
A critical vulnerability, CVE-2025-47812, in Wing FTP Server is under active exploitation, allowing unauthenticated remote code execution with root or SYSTEM…