Code Defence

A critical remote code execution vulnerability (CVE-2025-12735) has been discovered in `expr-eval`, a widely used JavaScript library for mathematical expression […]

QNAP has urgently released firmware updates to fix seven critical zero-day vulnerabilities in its NAS operating systems. These flaws were

Okta has released emergency patches for a critical vulnerability (CVE-2025-10099) affecting its standard authentication API. The flaw allows an attacker

A joint advisory from CISA, NSA, and FBI confirms that the China-state-sponsored group “Volt Typhoon” has successfully infiltrated multiple US

The Clop ransomware gang has returned with a new mass-exploitation campaign, this time targeting a zero-day vulnerability (CVE-2025-7788) in “SafeMove,”

Researchers have identified “HiveMind,” a novel botnet comprised of millions of compromised IoT devices (cameras, routers). Unlike traditional DDoS botnets,

The Clop ransomware gang has returned with a new mass-exploitation campaign, this time targeting a zero-day vulnerability (CVE-2025-7788) in “SafeMove,”

Okta has released emergency patches for a critical vulnerability (CVE-2025-10099) affecting its standard authentication API. The flaw allows an attacker

A joint advisory from CISA, NSA, and FBI confirms that the China-state-sponsored group “Volt Typhoon” has successfully infiltrated multiple US

Researchers have identified “HiveMind,” a novel botnet comprised of millions of compromised IoT devices (cameras, routers). Unlike traditional DDoS botnets,