Uncategorized

A critical authentication bypass vulnerability (CVE-2025-49752) has been disclosed in Microsoft Azure Bastion. The flaw allows remote attackers to bypass […]

Researchers have identified “Matrix Push,” a new Command and Control (C2) framework that abuses legitimate browser push notifications to execute

Cybersecurity giant CrowdStrike has confirmed the termination of an employee who allegedly shared sensitive internal system details with a hacking

The ShinyHunters hacking group claims to have compromised over 200 companies by exploiting a supply chain vulnerability in the “Gainsight”

CISA has added a critical vulnerability (CVE-2025-61757, CVSS 9.8) in Oracle Identity Manager to its Known Exploited Vulnerabilities (KEV) catalog.

Security researchers have identified a critical Remote Code Execution (RCE) zero-day vulnerability in Microsoft Office that is being actively exploited

Italy’s national railway operator, Ferrovie dello Stato (FS), has suffered a massive data breach involving 2.3 TB of sensitive information.

A critical authentication bypass vulnerability (CVE-2025-49752, CVSS 10.0) has been disclosed in Microsoft Azure Bastion. The flaw allows unauthenticated attackers

A new 2026 Identity Fraud Report by Entrust reveals that AI-driven deepfakes are now responsible for one in five (20%)

The INC Ransomware gang has claimed responsibility for an attack on NAFFCO, one of the world’s leading producers of fire