UK Manufacturers Under Cyber Fire 🚨 Nearly 80 percent of British manufacturers say they’ve been hit by a cyber incident in the past year, as new research suggests disruption on the factory floor i...
Casbaneiro Phishing Campaign 🚨 A multi-pronged phishing campaign is targeting Spanish-speaking users in organizations across Latin America and Europe to deliver Windows banking trojans like Casban...
Malicious Script That Gets Rid of ADS 🚨 Today, most malware are referred to as “fileless” because they aim to minimize their footprint on the infected computer’s filesystem. However, they still ne...
PX4 Autopilot Vulnerability Exposed 🚨 A critical vulnerability has been identified in the PX4 Autopilot system that could allow attackers to execute arbitrary shell commands without cryptographic ...
GIGABYTE Control Center Vulnerability 🚨 The GIGABYTE Control Center is vulnerable to an arbitrary file-write flaw that could allow a remote, unauthenticated attacker to access files on vulnerable ...
Application Control Bypass for Data Exfiltration In case of a cyber incident, most organizations fear more data loss (via exfiltration) than regular data encryption because they have a good backup...
Anritsu Remote Spectrum Monitor Vulnerability Advisory 🚨 Attention: A critical vulnerability has been identified in the Anritsu Remote Spectrum Monitor that could allow attackers with network acce...
New RoadK1ll WebSocket Implant Used to Pivot on Breached Networks A newly identified malicious implant named RoadK1ll is enabling threat actors to quietly move from a compromised host to other sys...
LangChain Path Traversal Bug Exposes AI Pipeline Vulnerabilities 🚨 Security researchers are warning that applications using AI frameworks without proper safeguards can expose sensitive information...
OpenAI Patches ChatGPT Flaw That Smuggled Data Over DNS 🚀 OpenAI has been vocal about its commitment to data security for its AI services. However, a recent report from Check Point reveals that Ch...
Major Vulnerability in strongSwan VPNs 🚨 A 15-year-old flaw in strongSwan’s EAP-TTLS plugin could allow hackers to knock VPNs offline. Research from Bishop Fox reveals how a simple math error lead...
New RoadK1ll WebSocket Implant Used to Pivot on Breached Networks A newly identified malicious implant named RoadK1ll is enabling threat actors to quietly move from a compromised host to other sys...
LangChain Path Traversal Bug Exposes AI Pipeline Vulnerabilities 🚨 Security researchers are warning that applications using AI frameworks without proper safeguards can expose sensitive information...
OpenAI Patches ChatGPT Flaw That Smuggled Data Over DNS 🚀 OpenAI has been vocal about its commitment to data security for its AI services. However, a recent report from Check Point reveals that Ch...
NEW: CVE vendor-product description metric Referenceurl title GithubURL CVE-2025-15445 Unknown - Restaurant C...
Major Vulnerability in strongSwan VPNs 🚨 A 15-year-old flaw in strongSwan’s EAP-TTLS plugin could allow hackers to knock VPNs offline. Research from Bishop Fox reveals how a simple math error lead...
🚨 Vulnerability Alert: Smart Slider Plugin A vulnerability in the Smart Slider 3 WordPress plugin, active on more than 800,000 websites, can be exploited to allow subscriber-level users access to ...
🚨 Vulnerability Alert: Smart Slider Plugin A vulnerability in the Smart Slider 3 WordPress plugin, active on more than 800,000 websites, can be exploited to allow subscriber-level users access to ...
Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs 🚨 macOS users are targeted in a fresh ClickFix campaign that uses a Cloudflare-themed verification page to deliver a Python-based i...
Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs 🚨 macOS users are targeted in a fresh ClickFix campaign that uses a Cloudflare-themed verification page to deliver a Python-based i...