PX4 Autopilot Vulnerability Exposed 🚨 A critical vulnerability has been identified in the PX4 Autopilot system that could allow attackers to execute arbitrary shell commands without cryptographic ...

GIGABYTE Control Center Vulnerability 🚨 The GIGABYTE Control Center is vulnerable to an arbitrary file-write flaw that could allow a remote, unauthenticated attacker to access files on vulnerable ...

Application Control Bypass for Data Exfiltration In case of a cyber incident, most organizations fear more data loss (via exfiltration) than regular data encryption because they have a good backup...

Anritsu Remote Spectrum Monitor Vulnerability Advisory 🚨 Attention: A critical vulnerability has been identified in the Anritsu Remote Spectrum Monitor that could allow attackers with network acce...

New RoadK1ll WebSocket Implant Used to Pivot on Breached Networks A newly identified malicious implant named RoadK1ll is enabling threat actors to quietly move from a compromised host to other sys...

LangChain Path Traversal Bug Exposes AI Pipeline Vulnerabilities 🚨 Security researchers are warning that applications using AI frameworks without proper safeguards can expose sensitive information...

OpenAI Patches ChatGPT Flaw That Smuggled Data Over DNS 🚀 OpenAI has been vocal about its commitment to data security for its AI services. However, a recent report from Check Point reveals that Ch...

Major Vulnerability in strongSwan VPNs 🚨 A 15-year-old flaw in strongSwan’s EAP-TTLS plugin could allow hackers to knock VPNs offline. Research from Bishop Fox reveals how a simple math error lead...

New RoadK1ll WebSocket Implant Used to Pivot on Breached Networks A newly identified malicious implant named RoadK1ll is enabling threat actors to quietly move from a compromised host to other sys...

LangChain Path Traversal Bug Exposes AI Pipeline Vulnerabilities 🚨 Security researchers are warning that applications using AI frameworks without proper safeguards can expose sensitive information...

OpenAI Patches ChatGPT Flaw That Smuggled Data Over DNS 🚀 OpenAI has been vocal about its commitment to data security for its AI services. However, a recent report from Check Point reveals that Ch...

NEW: CVE vendor-product description metric Referenceurl title GithubURL   CVE-2025-15445 Unknown - Restaurant C...

Major Vulnerability in strongSwan VPNs 🚨 A 15-year-old flaw in strongSwan’s EAP-TTLS plugin could allow hackers to knock VPNs offline. Research from Bishop Fox reveals how a simple math error lead...

🚨 Vulnerability Alert: Smart Slider Plugin A vulnerability in the Smart Slider 3 WordPress plugin, active on more than 800,000 websites, can be exploited to allow subscriber-level users access to ...

🚨 Vulnerability Alert: Smart Slider Plugin A vulnerability in the Smart Slider 3 WordPress plugin, active on more than 800,000 websites, can be exploited to allow subscriber-level users access to ...

Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs 🚨 macOS users are targeted in a fresh ClickFix campaign that uses a Cloudflare-themed verification page to deliver a Python-based i...

Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs 🚨 macOS users are targeted in a fresh ClickFix campaign that uses a Cloudflare-themed verification page to deliver a Python-based i...

UK Sanctions Xinbi Marketplace Linked to Asian Scam Centers 🚨 The United Kingdom’s Foreign, Commonwealth and Development Office (FCDO) has sanctioned Xinbi, a Chinese-language online marketplace t...

Understanding Spyware 🚨 Spyware is one of the biggest threats to your mobile security and can severely impact your phone’s performance if you are unlucky enough to become infected. It is a type of...

Overview 🚨 A prolific Russia-aligned Advanced Persistent Threat (APT) group known as Pawn Storm, also referred to as APT28, Fancy Bear, UAC-0001, and Forest Blizzard, has launched a new campaign d...