Over 7,400 Citrix NetScaler appliances worldwide remain unpatched against two high-severity vulnerabilities—CVE-2025-5777 and CVE-2025-6543—raising urgent concerns about active exploitation and persistent threats.
On 11 August 2025, the Dutch National Cyber Security Centre (NCSC) published an update on the Citrix NetScaler breach first detected on 16...
In what appears to be a significant cybersecurity incident, threat actors have claimed a full compromise of Royal Enfield’s internal systems.
The group behind the alleged intrusion has posted a “Breach Notice” on an underground forum, asserting that they have encrypted all servers and...
On August 12, 2025, SAP released its monthly Security Patch Day addressing 15 new vulnerabilities across multiple SAP products, marking one of the year's most significant security updates.
The release includes three critical code injection vulnerabilities with maximum CVSS scores of 9.9, alongside four...
A critical vulnerability in Apache bRPC's Redis protocol parser has been identified that allows remote attackers to execute denial-of-service attacks against affected systems.
The vulnerability, designated CVE-2025-54472, affects all versions of the industrial-grade RPC framework prior to version 1.14.1.
Apache bRPC is a widely-used C++...
A critical vulnerability that transforms ordinary USB webcams into sophisticated cyber weapons, marking the first documented case where attackers can remotely weaponize USB devices already connected to computers.
The groundbreaking research by Eclypsium's Jesse Michael and Mickey Shkatov, presented at DEF CON 2025, demonstrates...
Shared Linux hosting environments are designed to maximize transparency and facilitate system administration, but these very features can be weaponized by malicious users to harvest sensitive data.
Security researcher Ionuț Cernica recently demonstrated how standard Linux utilities and predictable file behaviors can be exploited...