Severe AMI MegaRAC Vulnerability Exposes Data Centers to Attacks
A critical vulnerability in American Megatrends International’s (AMI) MegaRAC Baseboard Management Controller (BMC) software poses a severe risk to data […]
Critical Apache Tomcat RCE Flaw (CVE-2025-24813) Actively Exploited – Patch Now!
A remote code execution (RCE) vulnerability in Apache Tomcat, tracked as CVE-2025-24813, is currently being exploited in the wild. This
Hackers Use ClickFix to Steal Data from Hospitality Firms via Booking.com Scam
A new phishing campaign dubbed ‘ClickFix’ is impersonating Booking.com to infiltrate hospitality businesses and deploy multiple types of infostealing malware.
Critical FreeType Bug (CVE-2025-27363) Puts Linux Systems at Risk
Meta has issued a warning regarding a critical security flaw in the FreeType open-source font rendering library, highlighting potential active
Microsoft’s March Update: 57 Vulnerabilities Fixed, 6 Zero-Days Patched
Microsoft has rolled out its latest Patch Tuesday update, addressing 57 security vulnerabilities, including six zero-day flaws that are currently
Advanced SideWinder APT Hacks Critical Infrastructure Across The World
Cybersecurity experts have uncovered a new wave of attacks by the SideWinder advanced persistent threat (APT) group, targeting maritime, nuclear,
CVE-2024-4577: Critical PHP-CGI RCE Flaw Under Active Exploitation
A cyberattack campaign is actively targeting Japan’s technology, telecommunications, entertainment, education, and e-commerce industries. The attackers are exploiting CVE-2024-4577, a
Kibana Security Flaw (CVE-2025-25012): Elastic Issues Critical Fix
Elastic has released an urgent security update to fix a critical vulnerability in Kibana, the popular data visualization dashboard for
Critical VMware Vulnerabilities: CISA Mandates Immediate Patching
Broadcom has issued urgent security updates to address three critical vulnerabilities in VMware ESXi, Workstation, and Fusion that are actively
Critical Paragon Driver Flaw (CVE-2025-0289) Used in Ransomware Campaigns
Hackers are actively exploiting a security vulnerability in the Paragon Partition Manager’s BioNTdrv.sys driver, using it in ransomware attacks to
Phishing CAPTCHA PDFs Deliver Lumma Stealer Malware via Webflow and GoDaddy
A phishing campaign has been uncovered that uses fake CAPTCHA images embedded in PDF documents to distribute the Lumma Stealer
Stealthy Linux Malware ‘Auto-Color’ Grants Hackers Full Remote Access
A new Linux malware, dubbed Auto-Color, has been actively targeting universities and government organizations across North America and Asia between
Truesight.sys Driver Abused to Bypass EDR and Deliver HiddenGh0st RAT
Attackers have reportedly exploited a vulnerable Windows driver, Truesight.sys, to bypass Endpoint Detection and Response (EDR) systems and deploy the
Chinese Salt Typhoon Hackers Exploit Cisco Flaw CVE-2018-0171 to Target U.S. Telecoms
Cisco has confirmed that a Chinese state-backed hacking group, known as Salt Typhoon, exploited a known security vulnerability (CVE-2018-0171) to
Signal Users Targeted in New QR Code Phishing Attacks
Cybercriminals aligned with Russia have been actively exploiting the linked devices feature in Signal, the popular privacy-focused messaging app, to