An unauthenticated remote code execution vulnerability in the core Windows networking stack is being exploited to compromise VPN gateways and […]
Critical Windows IKEv2 remote code execution zero-day added to CISA KEV Read More »
A critical supply chain breach has impacted a major cloud development platform following the compromise of an employee Google Workspace
Vercel confirms internal breach linked to compromised AI tool and ShinyHunters extortion Read More »
Attackers are industrializing the exploitation of a memory overread flaw to hijack enterprise sessions and bypass multi-factor authentication. This vulnerability
Active exploitation of Citrix NetScaler memory disclosure flaw surging globally Read More »
A critical prototype pollution vulnerability in the world most popular PDF reader was weaponized months before its public disclosure. This
Adobe Acrobat emergency update addresses prototype pollution zero-day Read More »
Attackers are actively exploiting a critical spoofing vulnerability in SharePoint Server to falsify internal corporate communications and facilitate high-fidelity phishing.
Microsoft SharePoint Server zero-day exploited for trusted content spoofing Read More »
A critical remote code execution vulnerability that remained dormant for over a decade has been added to the federal list
CISA adds 13-year-old Apache ActiveMQ RCE flaw to KEV following mass exploitation Read More »
A new iteration of the Mirai botnet is aggressively targeting internet-connected video recording devices and SOHO routers to build a
Nexcorium botnet scales operations by weaponizing legacy TP-Link and TBK exploits Read More »
A high-severity security bug in the latest version of the iPhone operating system allows for local bypass of the passcode
Apple developing emergency fix for iOS passcode bypass bug linked to Czech keyboard Read More »
A functional proof-of-concept exploit has been published for a critical command execution vulnerability in your automated threat analysis infrastructure. This
Public PoC exploit released for critical Fortinet FortiSandbox RCE vulnerability Read More »
A critical remote code execution vulnerability that remained dormant for over a decade has been added to the federal list
CISA adds 13-year-old Apache ActiveMQ RCE flaw to KEV following active abuse Read More »
