A critical vulnerability in the management interface of high-performance server hardware allows unauthenticated attackers to gain full administrative control. This […]
Cisco releases emergency fixes for critical Integrated Management Controller bypass Read More »
One of the most trusted HTTP client libraries in the JavaScript ecosystem has been weaponized by a North Korea-nexus actor
North Korean UNC1069 attributed to Axios npm supply chain compromise Read More »
Attackers are industrializing the exploitation of a memory overread flaw to hijack enterprise sessions and bypass multi-factor authentication. This vulnerability
Active exploitation of Citrix NetScaler memory disclosure flaw surging globally Read More »
A large-scale automated campaign is currently exploiting a critical pre-authentication RCE in React Server Components and Next.js applications to siphon
React2Shell campaign exploits critical Next.js RCE for automated cloud harvesting Read More »
The supply chain campaign initiated through a compromised vulnerability scanner has successfully pivoted into secondary cloud-native libraries. This cascading failure
TeamPCP leverages stolen Trivy secrets to compromise secondary cloud targets Read More »
Attackers are leveraging an unauthenticated memory overread vulnerability to bypass multi-factor authentication on enterprise gateways. This flaw specifically targets the
Citrix NetScaler memory disclose flaw actively exploited for session takeover Read More »
The Interlock ransomware group is actively targeting network security management planes to gain root-level control over enterprise firewalls. This campaign
Interlock ransomware weaponizes Cisco Secure FMC RCE for edge-device entry Read More »
A large-scale automated campaign is currently exploiting a critical flaw in Next.js applications to map and harvest credentials from cloud-native
React2Shell campaign compromises 766 hosts via Next.js vulnerability Read More »
Attackers are industrializing the exploitation of a memory overread flaw to hijack enterprise sessions and bypass multi-factor authentication. This vulnerability
Active exploitation of Citrix NetScaler memory disclosure flaw surging globally Read More »
The sophisticated supply chain attack on the Axios library has been confirmed as the result of a targeted social engineering
North Korean UNC1069 used social engineering to hijack Axios npm distribution Read More »
