A serious command injection vulnerability in Cacti, a popular open-source network monitoring tool, allows authenticated attackers to execute arbitrary commands…
Researchers from BCA LTD, NorthScan, and ANY.RUN trapped North Korean Lazarus Group operatives, linked to the Famous Chollima division, live…
Security researcher Lyra Rebane has uncovered a powerful new clickjacking technique using SVG filters. This method, dubbed "SVG clickjacking," overlays…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2021-26828 to its Known Exploited Vulnerabilities (KEV) catalog on December 3,…
Security researchers chained three vulnerabilities in Synology BeeStation devices to enable unauthenticated attackers to remotely gain root access. Demonstrated initially…
Arizona Attorney General Kris Mayes has filed a landmark lawsuit against Chinese e-commerce giant Temu and its parent company, PDD…
India's Department of Telecommunications (DoT) has issued a directive mandating continuous SIM binding for popular messaging apps, requiring an active…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert for a remote code execution (RCE) vulnerability…
The U.S. Justice Department has seized a key web domain used in a major cryptocurrency investment fraud scheme tied to…
Security researchers have uncovered a stored cross-site scripting (XSS) vulnerability in Angular's Template Compiler that lets attackers inject and execute…