The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning regarding the active exploitation of a privilege escalation vulnerability…
Executive Summary A critical deserialization vulnerability in Fortra GoAnywhere MFT (CVE-2025-10035 , with a CVSS score of 10.0) has been…
Oracle E-Business Suite (EBS), a comprehensive suite of enterprise resource planning (ERP) applications, is integral to managing core business operations…
A newly discovered and actively exploited local privilege escalation vulnerability in VMware Tools and Aria Operations, tracked as CVE-2025-41244, has…
The discovery and exploitation of CVE-2025-27915, a stored cross-site scripting (XSS) vulnerability in Zimbra Collaboration Suite (ZCS), underscores the persistent…
Every day, businesses are facing new cybersecurity threats. With tight budgets and growing security challenges, end customers are becoming more…
A sophisticated, state-sponsored threat actor tracked as ArcaneDoor is actively exploiting two new zero-day vulnerabilities in Cisco firewalls. The campaign deploys a…
Cybercriminal groups and nation aligned advanced persistent threats (APTs) are increasingly converging on stealth first, persistence focused, and monetization driven…
Executive summary Since at least early 2025, a suspected China-nexus cluster, tracked as UNC5221, has deployed the BRICKSTORM backdoor using…
Cloud misconfigurations keep causing outages, exposure, and compliance headaches. Security teams need a clear way to evaluate cloud security posture…