The vulnerability, designated CVE-2025-5777 and dubbed "CitrixBleed 2," represents a significant security concern for organizations relying on Citrix infrastructure.
Cybersecurity researchers at GreyNoise have discovered that malicious actors began exploiting a critical vulnerability in Citrix NetScaler systems nearly two weeks before a public proof-of-concept became...
Cisco disclosed a critical weakness within the web-based management interface of its Unified Intelligence Center (CUIC) that can be exploited by authenticated remote attackers to upload arbitrary files.
Tracked as CVE-2025-20274 and carrying a CVSS base score of 6.3, the flaw stems from insufficient...
Cloudflare has released a detailed incident report confirming that the 62-minute global outage of its popular 1.1.1.1 DNS resolver service on July 14, 2025, was caused by an internal configuration error, not a BGP attack as initially speculated.
The outage affected millions of users...
A significant portion of the pro-Russian cybercrime network NoName057(16), disrupting over 100 servers worldwide and issuing multiple arrest warrants against Russian nationals.
The coordinated effort, spanning from July 14-17, 2025, marked one of the largest cybercrime operations targeting infrastructure supporting Russia's digital warfare efforts.
Operation...
The cybersecurity landscape faces another critical threat as dozens of Fortinet FortiWeb instances have been compromised with webshells in a widespread hacking campaign.
The Shadowserver Foundation has identified 77 compromised FortiWeb instances, marking a significant security incident that directly followed the public release of...
Microsoft has announced its annual recognition of the top 100 security researchers through the Microsoft Security Response Center (MSRC) Researcher Recognition Program.
The program publicly acknowledges security researchers who contribute to customer protection by discovering and reporting security vulnerabilities through Coordinated Vulnerability Disclosure.
The 2025...