Fortinet has issued an urgent security advisory for a critical vulnerability in FortiSIEM that allows unauthenticated attackers to execute arbitrary commands remotely.
The vulnerability, tracked as CVE-2025-25256 with a maximum CVSS score of 9.8, has already been exploited in the wild with proof-of-concept...
A critical zero-click vulnerability that circumvents Microsoft's security patch for CVE-2025-24054, enabling attackers to extract NTLM credentials without any user interaction.
The new vulnerability, assigned CVE-2025-50154, demonstrates that Microsoft's April security update was incomplete, leaving Windows systems vulnerable to credential theft and malicious...
Microsoft has disclosed a significant remote code execution vulnerability in Teams that could enable attackers to compromise enterprise communications and access sensitive data.
The vulnerability, designated CVE-2025-53783, represents a serious security threat to organizations worldwide using the popular collaboration platform.
The vulnerability stems from a...
Over 7,400 Citrix NetScaler appliances worldwide remain unpatched against two high-severity vulnerabilities—CVE-2025-5777 and CVE-2025-6543—raising urgent concerns about active exploitation and persistent threats.
On 11 August 2025, the Dutch National Cyber Security Centre (NCSC) published an update on the Citrix NetScaler breach first detected on 16...
In what appears to be a significant cybersecurity incident, threat actors have claimed a full compromise of Royal Enfield’s internal systems.
The group behind the alleged intrusion has posted a “Breach Notice” on an underground forum, asserting that they have encrypted all servers and...
On August 12, 2025, SAP released its monthly Security Patch Day addressing 15 new vulnerabilities across multiple SAP products, marking one of the year's most significant security updates.
The release includes three critical code injection vulnerabilities with maximum CVSS scores of 9.9, alongside four...