The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about a critical vulnerability in Wing FTP Server that is being actively exploited by threat actors in the wild.
The vulnerability, tracked as CVE-2025-47812, represents a significant security risk to organizations using...
July 14, 2025 – In a striking example of how legacy technologies still pose modern threats, cybersecurity researchers have uncovered an advanced attack leveraging Microsoft’s Compiled HTML Help (CHM) format to deliver C++ malware into targeted Polish organizations stealthily.
The campaign, which uses a...
RapidFire Tools’ Network Detective, a widely used network assessment and reporting utility, has been found to expose critical credentials through two distinct vulnerabilities that undermine the confidentiality and integrity of client infrastructures.
Security researchers have assigned CVE-2025-32353 and CVE-2025-32874 to these flaws, which respectively...
The Cybersecurity and Infrastructure Security Agency (CISA) has released thirteen Industrial Control Systems (ICS) advisories on July 10, 2025, highlighting critical security vulnerabilities affecting major industrial vendors, including Siemens, Delta Electronics, Advantech, KUNBUS, and IDEC.
This comprehensive release encompasses ten new security advisories and...
A new ransomware group called Arkana has emerged as a significant cybersecurity threat in 2025, making headlines with a devastating attack on WideOpenWest (WOW!), a major U.S. internet service provider.
The cybercriminals claim to have stolen massive customer databases containing approximately 403,000 and 2.2...
The Apache Software Foundation has released Apache HTTP Server 2.4.64 on July 10, 2025, addressing eight significant security vulnerabilities that affected versions spanning from 2.4.0 through 2.4.63.
This critical update resolves multiple attack vectors, including HTTP response splitting, server-side request forgery (SSRF), and denial-of-service...