Fortinet warns attackers used symlink exploits to retain access post-patch, prompting urgent FortiOS updates and SSL-VPN mitigations.

SpyNote malware disguised as Chrome installs hidden APKs via fake Play Store pages, stealing sensitive Android data.

Google patched 62 flaws, including two actively exploited kernel bugs, closing exploit chains used in Android attacks.

Incomplete fix for CVE-2024-0132 in NVIDIA Toolkit leaves Linux Docker hosts vulnerable to container escapes and DoS attacks.

Gamaredon breached a Western military mission on Feb 26, 2025, using upgraded GammaSteel malware and new obfuscation tactics.

Cybersecurity researchers have disclosed details of an artificial intelligence (AI) powered platform called AkiraBot that's ...

Adobe fixes 11 critical ColdFusion vulnerabilities in April 2025, urging updates to prevent file reads and code execution.

CVE-2025-29824 exploited via PipeMagic malware escalated SYSTEM privileges, leading to targeted ransomware attacks.

Lovable AI scored 1.8 on VibeScamming tests, enabling full scam creation with minimal guardrails, risking mass phishing abuse ...

This week, we trace how simple oversights turn into major breaches — and the silent threats most companies still ...

A recently disclosed critical security flaw impacting CrushFTP has been added by the U.S. Cybersecurity and Infrastructure ...

Kaspersky said its investigation into ToddyCat-related incidents in early 2024 unearthed a suspicious DLL file ("version.dll" ...