A critical security vulnerability in ASUS Armoury Crate software has been discovered that allows attackers to gain complete system control on Windows machines through a sophisticated hard link exploitation technique.
The vulnerability, designated CVE-2025-3464 with a high CVSS score of 8.8, affects the AsIO3.sys...
A two critical vulnerabilities in sslh, a popular protocol demultiplexer that allows multiple services to share the same network port.
The vulnerabilities , disclosed on June 13, 2025, could enable remote attackers to trigger denial-of-service (DoS) conditions, potentially crashing servers and disrupting services.
The...
A sophisticated cyber attack campaign that exploited a Google Chrome zero-day vulnerability in March 2025, with investigators now linking the operation to a persistent threat actor group.
The Positive Technologies Expert Security Center analyzed the attack targeting the previously unknown vulnerability, tracked as CVE-2025-2783,...
A 25-year-old former GCHQ intern has been sentenced to seven-and-a-half years’ imprisonment for illegally transferring classified national security data to his personal devices and possessing indecent images of children.
Hasaan Arshad, a computer science student from Rochdale, pleaded guilty to violations of the Computer...
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical zero-click vulnerability in Apple's iOS to its Known Exploited Vulnerabilities (KEV) catalog, following evidence that the flaw has been actively exploited by sophisticated spyware campaigns targeting journalists across Europe.
CISA has designated CVE-2025-43200 as...
Apache Tomcat, the widely used open-source Java servlet container, disclosed four security vulnerabilities on June 16, 2025, including two high-severity denial-of-service (DoS) vulnerabilities and a moderate-risk authentication bypass issue.
The vulnerabilities affect all major Tomcat branches (versions 9.x, 10.x, and 11.x), potentially exposing millions...