In what appears to be a significant cybersecurity incident, threat actors have claimed a full compromise of Royal Enfield’s internal systems.
The group behind the alleged intrusion has posted a “Breach Notice” on an underground forum, asserting that they have encrypted all servers and...
On August 12, 2025, SAP released its monthly Security Patch Day addressing 15 new vulnerabilities across multiple SAP products, marking one of the year's most significant security updates.
The release includes three critical code injection vulnerabilities with maximum CVSS scores of 9.9, alongside four...
A critical vulnerability in Apache bRPC's Redis protocol parser has been identified that allows remote attackers to execute denial-of-service attacks against affected systems.
The vulnerability, designated CVE-2025-54472, affects all versions of the industrial-grade RPC framework prior to version 1.14.1.
Apache bRPC is a widely-used C++...
A critical vulnerability that transforms ordinary USB webcams into sophisticated cyber weapons, marking the first documented case where attackers can remotely weaponize USB devices already connected to computers.
The groundbreaking research by Eclypsium's Jesse Michael and Mickey Shkatov, presented at DEF CON 2025, demonstrates...
Shared Linux hosting environments are designed to maximize transparency and facilitate system administration, but these very features can be weaponized by malicious users to harvest sensitive data.
Security researcher Ionuț Cernica recently demonstrated how standard Linux utilities and predictable file behaviors can be exploited...
SSHamble, a powerful open-source tool designed to identify and exploit vulnerabilities in SSH implementations, during his presentation at DEFCON 33 on August 9, 2025.
The tool represents a significant advancement in SSH security testing, offering researchers and security professionals comprehensive capabilities to assess the...