Hackers Exploit VPS to Bypass Security and Compromise SaaS Accounts
Experts have warned that hackers are increasingly using virtual private servers (VPS) to break into software-as-a-service (SaaS) accounts. A new […]
CVE-2025-43300: Apple Patches Zero-Day Exploited in Targeted iPhone and Mac Attacks
Apple has rolled out urgent security updates for iOS, iPadOS, and macOS to patch a critical zero-day vulnerability actively exploited
Microsoft August 2025 Update Breaks Windows Reset and Recovery Tools
Microsoft has officially warned users that the August 2025 Windows security updates are causing serious issues with system recovery and
Cisco Patches Critical FMC RADIUS Flaw (CVE-2025-20265) with CVSS 10.0 Rating
Cisco has released critical security updates to address a maximum-severity flaw in its Secure Firewall Management Center (FMC) Software. The
CVE-2025-25256: Fortinet Warns of Critical FortiSIEM Vulnerability With Exploit in the Wild
Fortinet has issued a critical security alert regarding a severe vulnerability in its FortiSIEM product. The flaw, identified as CVE-2025-25256,
Microsoft Sets End-of-Support Date for Windows 11 23H2 Home and Pro Editions
Microsoft has officially announced that Windows 11 version 23H2 for Home and Pro editions will reach its end of support
Hackers Exploit WinRAR Zero-Day CVE-2025-8088: Patch to Version 7.13 Now
WinRAR, one of the most widely used file archiving tools for Windows, has patched a high-severity flaw tracked as CVE-2025-8088
CVE-2025-53786: Exchange Server Flaw Lets Hackers Access Cloud Without Detection
Microsoft has issued a high-severity security warning about a critical vulnerability affecting on-premise Exchange Servers used in hybrid cloud setups.
ShinyHunters Target Google in Massive Salesforce CRM Cyberattacks
Google has confirmed that it was affected by a data breach as part of a larger cyberattack campaign targeting Salesforce
Google Patches Actively Exploited Qualcomm Bugs in August Android Update
Google has released its August 2025 Android security update, addressing several serious vulnerabilities — including two high-risk flaws in Qualcomm
Akira Ransomware Exploits SonicWall VPNs in Likely Zero-Day Attack
A new wave of cyberattacks involving the Akira ransomware group has targeted SonicWall SSL VPN devices, even those running the
Microsoft 365 Users Targeted by Fake OAuth Apps Using Tycoon Phishing Kit
Researchers have observed a sharp increase in cyberattacks targeting Microsoft 365 users, using a combination of fake OAuth applications and
Dahua IP Cameras at Risk: CVE-2025-31700 and CVE-2025-31701
Security researchers have uncovered two high-severity vulnerabilities in Dahua smart cameras that could let attackers remotely hijack the devices without
PaperCut Exploited by Hackers Using Remote Code Execution: CISA
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a new warning about a serious vulnerability in PaperCut NG/MF
CVE-2025-24000: Post SMTP Vulnerability & Admin Takeover of WordPress Sites
A security vulnerability in the popular Post SMTP plugin for WordPress has left over 200,000 websites exposed to potential hijacking