Two critical vulnerabilities in BIND 9, one of the most widely deployed DNS server software solutions globally.
Released on July 16, 2025, these security vulnerabilities pose significant risks to organizations running affected versions, potentially exposing them to cache poisoning attacks and denial-of-service incidents...
A staggering 4.26 million vulnerable Internet-connected devices that can be exploited to launch devastating denial-of-service (DoS) attacks.
The comprehensive study, published in their latest research paper, reveals that these exposed systems accept unauthenticated tunneling traffic from any source, creating a massive attack surface that...
Juniper Networks has disclosed a critical vulnerability in its Junos OS and Junos OS Evolved operating systems that allows unauthenticated adjacent attackers to trigger denial-of-service conditions through malicious BGP UPDATE packets.
The flaw, tracked as CVE-2025-52953, represents an Expected Behavior Violation vulnerability in the...
A critical buffer overflow vulnerabilities in multiple Zoom clients for Windows that could enable authorized users to launch denial-of-service attacks through network access.
The vulnerabilities, tracked as CVE-2025-49464 and CVE-2025-46789, both carry a medium severity rating with CVSS scores of 6.5, highlighting significant security...
In June 2025, cybersecurity researchers at NSFOCUS Fuying Lab detected a powerful new botnet named hpingbot proliferating across global networks.
Distinct from legacy threats, hpingbot is coded in Go and supports a range of platforms, including Windows, Linux, and IoT devices.
Notably, it’s engineered for multiple...
A critical security vulnerability has been identified and patched in Next.js, the popular React-based web framework.
The vulnerability, designated as CVE-2025-49826, affects specific versions of the framework and could allow attackers to exploit cache poisoning mechanisms to trigger denial-of-service conditions on vulnerable applications.
The security...