top of page


Sep 30, 2024
Critical Authentication Bypass Bug in GitLab: Immediate Patching Required
The Download GitLab has issued a warning about a high-severity authentication bypass vulnerability (CVE-2024-45409) affecting GitLab...


Sep 23, 2024
CISA Alerts on Critical Apache HugeGraph Vulnerability Actively Exploited in Attacks
The Download CISA, the US Cybersecurity Infrastructure Security Agency, issued a warning about a critical vulnerability (CVE-2023-41887)...


Sep 23, 2024
Splinter: A New Red Team Tool That Could Fall into Hacker Hands
The Download Like its predecessor, Cobalt Strike, Splinter, is a new tool designed for red team pen testing, but is subject to misuse by...

Sep 23, 2024
Google Patches Critical Chrome Vulnerability Exploited in the Wild
The Download Google announced a patch to a critical vulnerability (CVE-2024-7965) in Google Chrome that is being actively exploited in...


Sep 15, 2024
Microsoft Patches Windows Smart App Control Zero-Day Exploited Since 2018
The Download Microsoft has addressed a critical zero-day vulnerability affecting Windows Smart App Control, originally tracked as...

Sep 15, 2024
CISA Orders Urgent Patching of SonicWall Vulnerability Amid Ransomware Exploits
#CISA #ASM The Download The Cybersecurity and Infrastructure Security Agency (CISA) has mandated the immediate patching of a critical...


Sep 15, 2024
Adobe Patches Critical Acrobat Reader Zero-Day Vulnerability Exploited in the Wild
The Download Adobe released a critical update for Acrobat Reader, addressing a zero-day vulnerability (CVE-2023-38646) that is already...


Sep 9, 2024
Critical 10/10 Severity RCE Flaw Found in Progress LoadMaster: What IT Admins Must Do
The Download A critical remote code execution (RCE) vulnerability has been identified in Progress LoadMaster and LoadMaster Multi-Tenant...

Sep 9, 2024
New WordPress Contact Form Vulnerability Affects 1.1M Sites
The Download A recently discovered set of vulnerabilities affecting WordPress contact form plugins exposes websites to potential...


Sep 9, 2024
Cisco NX-OS Vulnerability: A Critical Flaw That Exposes Networks to Remote Attacks
The Download Cisco identified several high-severity vulnerabilities in its NX-OS software, which could allow unauthorized attackers to...


Sep 2, 2024
Mirai Strikes Again: IP Cameras Hijacked for Botnet Attacks
The Download Security researchers discovered IP cameras all around the world were compromised and recruited into the Mirai botnet, which...


Sep 2, 2024
SQL Injection Strikes Again: Airline Security Breached via Known Vulnerability
The Download Security researchers were able to compromise an airline's database by exploiting an SQL injection vulnerability, which...


Sep 2, 2024
Chinese Hackers Breach U.S. Internet Service Providers in Alarming Cyber Espionage Campaign
The Download In a new expose in the Washington Post, Chinese government-backed hackers, known by security researchers as Volt Typhoon,...


Aug 25, 2024
RMMs: How Hackers are Turning IT Tools Against the Networks
The Download A new report shows that the tool of choice for hackers and ransomware gangs is the very tool used by Managed Service...

Aug 25, 2024
Fortune 50 Pays Record $75M Ransom: The High Stakes of Cybercrime
The Download An analysis in an annual report from Chainanalysis sheds new light on the surging profitability of ransomware campaigns. The...


Aug 25, 2024
Critical SolarWinds RCE Bug Exploited: CISA Urges Immediate Action
The Download If you are feeling shades of anxiety from a SolarWinds RCE, we understand. And with CISA weighing in this must be patched...


Aug 19, 2024
Unveiling the Cloud's Achilles' Heel: How a Hidden Entra ID Flaw Threatens Organizational Security
The Download A senior cloud security researcher at Semperis announced a critical vulnerability in Microsoft Entra ID at Black Hat, where...

Aug 18, 2024
Unlocking the Inbox: How a 0-Click Vulnerability in Outlook Opened the Door to Remote Code Execution
The Download A critical vulnerability in Microsoft Outlook ( identified as CVE-2024-30103 ) allows malicious code to run to enable...


Aug 15, 2024
Silent Threat: 0-Click RCE Vulnerability Exposes All Windows Systems to Total Takeover
The Download Microsoft announced a rare 0-click vulnerability (CVE-2024-38063) with CVSS severity score of 9.8/10 in the Windows TCP/IP...

Aug 11, 2024
Critical AWS Flaws: Behind the Patch that Prevented Cloud Account Takeovers
The Download Security company Aqua Security disclosed a flaw at BlackHat that if left unpatched could allow attackers to gain control of...
bottom of page