Cyber News

8 Harmful Firefox Add-ons Harvest OAuth Tokens, Passwords, and Spy on Users

As browser extensions become an integral part of our daily web experience, new research highlights a concerning surge in malicious…

10 months ago

Adaptive Malware and Zero-Day Exploits – How NightEagle APT Targets Industrial Systems

At the 2025 Malaysia National Cyber Defense and Security Exhibition, cybersecurity research organization Qian Pangu unveiled the results of a…

10 months ago

Critical Windows BitLocker Vulnerability Lets Attackers Bypass Encryption

A new security vulnerability in Windows BitLocker that could allow attackers to bypass the encryption software's security features through a…

10 months ago

Critical SOAR Security Update: Splunk Patches Third-Party Package Vulnerabilities

Splunk has released a comprehensive security advisory addressing multiple critical vulnerabilities in third-party packages within SOAR versions 6.4.0 and 6.4.1.…

10 months ago

Critical Security Update: Splunk Enterprise Addresses Third-Party Vulnerabilities

Splunk has released critical security updates addressing multiple vulnerabilities in third-party packages across Enterprise versions 9.4.3, 9.3.5, 9.2.7, and 9.1.10,…

10 months ago

FortiWeb SQL Injection Vulnerability Allows Execution of Malicious SQL Code

Fortinet has disclosed a critical SQL injection vulnerability affecting multiple versions of FortiWeb, their web application firewall solution. The security…

10 months ago

Zoom for Windows Vulnerabilities Leaves Users Open to DoS Attacks

A critical buffer overflow vulnerabilities in multiple Zoom clients for Windows that could enable authorized users to launch denial-of-service attacks…

10 months ago

MediaTek Patches Critical Chipset Vulnerabilities in July 2025 Security Update

MediaTek has released its July 2025 Product Security Bulletin addressing a comprehensive range of vulnerabilities affecting smartphone, tablet, AIoT, smart…

10 months ago

CISA Alerts on Active Exploits of Ruby on Rails Path Traversal Vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning regarding a path traversal vulnerability in Rails Ruby…

10 months ago

DNN Vulnerability: Attackers Can Steal NTLM Credentials Through Unicode Normalization Bypass

A critical vulnerability in DNN (formerly DotNetNuke), one of the oldest open-source content management systems established in 2003. The vulnerability,…

10 months ago
Show more Posts
Show previous Posts