NEW: CVE vendor-product description metric Referenceurl title GithubURL   CVE-2018-25158 Chamilo - Chamillo LMS...

NEW: CVE vendor-product description metric Referenceurl title GithubURL   CVE-2025-13563 BuddhaThemes - Lizza L...

NEW: CVE vendor-product description metric Referenceurl title GithubURL   CVE-2016-3481 n/a - n/a Unspeci...

NEW: CVE vendor-product description metric Referenceurl title GithubURL   CVE-2026-2648 Google - Chrome H...

Job Scam Alert 🚨 A recent investigation by Malwarebytes Labs has uncovered a job-themed phishing campaign that utilizes a fake Google Forms site to harvest Google logins. The suspicious URLs resem...

SmartLoader Hackers Clone Oura MCP Project to Spread StealC Malware 🚨 Hackers have devised a cunning scheme using a fake Oura MCP server to trick users into downloading malware that installs the S...

Keenadu: The Tablet Conqueror and Major Android Botnets 🚀 Our investigation uncovered a new backdoor, dubbed Keenadu, which mirrored Triada’s behavior by embedding itself into the firmware to comp...

Fake Incident Report Used in Phishing Campaign 🚨 An interesting phishing email was recently detected, offering insights into new TTPs (“tools, techniques & procedures”). This specific campaign...

Delta Electronics ASDA-Soft Vulnerability Advisory 🚨 Date Published: February 17, 2026 A stack-based buffer overflow vulnerability (CVE-2026-1361) exists in ASDA_Soft version 7.2.0.0 when parsing...

Critical Vulnerabilities in GE Vernova Enervista UR Setup 🚨 The recent advisory from ICS-CERT highlights significant vulnerabilities in the GE Vernova Enervista UR Setup. Successful exploitation o...

Android 17 Beta Launch 🚀 A new beta version of Android 17 has been released, bringing a range of privacy, security, and performance changes aimed at strengthening app protections and improving dev...

Washington Hotel Ransomware Incident 🚨 The Washington Hotel, a brand under Fujita Kanko Inc., has reported a ransomware attack that compromised its servers, exposing various business data. With 30...

Security Flaw at DavaIndia Pharmacy Exposes Customer Data 🚨 A significant security flaw at DavaIndia Pharmacy has exposed customer data and granted unauthorized access to outsiders. DavaIndia, a p...

Full Disclosure: CVE-2025-69690 & CVE-2025-69691 Two independent authenticated Remote Code Execution vulnerabilities were discovered in Netgate pfSense Community Edition. Both were reproduced ...

Eurail Confirms Stolen Traveler Data for Sale on Dark Web 🚨 Eurail B.V., the operator that provides access to 250,000 kilometers of European railways, has confirmed that data stolen in a breach ea...

🚨 Threat Actor Allegedly Selling Critical Severity OpenSea 0-Day Exploit Chain A threat actor is reportedly selling a purported critical severity zero-day exploit chain targeting OpenSea for $100,...

Overview A new alleged Russia-linked APT group has targeted Ukrainian defense, government, and energy sectors with CANFAIL malware. The Google Threat Intelligence Group has identified a previously...

Snail Mail Phishing Targets Trezor and Ledger Users 🚨 Threat actors are sending physical letters pretending to be from Trezor and Ledger, makers of cryptocurrency hardware wallets, to trick users ...

Operation Macromaze: APT28’s New Campaign Unveiled 🚀 LAB52 has been closely monitoring a campaign dubbed “Operation MacroMaze”, attributed to APT28, also known as Fancy Bear, Forest Blizzard, or F...

Fintech Firm Figure Discloses Data Breach Following Phishing Attack 🚨 Fintech firm Figure has confirmed a data breach after hackers used social engineering to trick an employee and steal a limited...