April 28, 2025

Vulnerability

Craft CMS zero-day, CVE-2025-32432
2 min read

Craft CMS Zero-Day CVE-2025-32432 Exploited with Metasploit Module Now Public

Ddos April 28, 2025
Planet Technology vulnerabilities, CISA advisory
2 min read

CISA Warns of Critical Vulnerabilities in Planet Technology Products

Ddos April 28, 2025
io_uring vulnerability, Linux runtime security
2 min read

Critical Flaw Exposes Linux Security Blind Spot: io_uring Bypasses Detection

Ddos April 28, 2025
React-Router
1 min read

React Router Vulnerabilities CVE-2025-43864 and CVE-2025-43865 Expose Web Applications to Attack

Ddos April 28, 2025

Cyber Security

SocGholish and RansomHub: Sophisticated Attack Campaign Targeting Corporate Networks SocGholish, RansomHub

SocGholish and RansomHub: Sophisticated Attack Campaign Targeting Corporate Networks

April 28, 2025
DeviceCodePhishing: How a New Attack Bypasses FIDO and MFA Protections DeviceCodePhishing, OAuth phishing

DeviceCodePhishing: How a New Attack Bypasses FIDO and MFA Protections

April 28, 2025
North Korean APT ‘Contagious Interview’ Launches Fake Crypto Companies to Spread Malware Trio DPRK AI hiring, Wagemole campaigns

North Korean APT ‘Contagious Interview’ Launches Fake Crypto Companies to Spread Malware Trio

April 28, 2025
SessionShark: New Phishing Kit Bypasses Office 365 MFA MFA Bypass, SessionShark

SessionShark: New Phishing Kit Bypasses Office 365 MFA

April 28, 2025

Malware Alert

Critical Flaw Exposes Linux Security Blind Spot: io_uring Bypasses Detection io_uring vulnerability, Linux runtime security

Critical Flaw Exposes Linux Security Blind Spot: io_uring Bypasses Detection

April 28, 2025
SocGholish and RansomHub: Sophisticated Attack Campaign Targeting Corporate Networks SocGholish, RansomHub

SocGholish and RansomHub: Sophisticated Attack Campaign Targeting Corporate Networks

April 28, 2025
North Korean APT ‘Contagious Interview’ Launches Fake Crypto Companies to Spread Malware Trio DPRK AI hiring, Wagemole campaigns

North Korean APT ‘Contagious Interview’ Launches Fake Crypto Companies to Spread Malware Trio

April 28, 2025
Lazarus Group’s “Operation SyncHole” Targets South Korean Industries Lazarus Group, Cyber Espionage Operation SyncHole

Lazarus Group’s “Operation SyncHole” Targets South Korean Industries

April 27, 2025

Data Leak

Verizon DBIR 2025: Vulnerability Exploitation Surges, Third-Party Breaches Double Data breach report Vulnerability exploitation

Verizon DBIR 2025: Vulnerability Exploitation Surges, Third-Party Breaches Double

April 24, 2025
CISA Warns of Credential Risks Tied to Oracle Cloud Breach Oracle breach, credential compromise

CISA Warns of Credential Risks Tied to Oracle Cloud Breach

April 17, 2025
Anonymous Releases 10TB of Leaked Data Targeting Russia Anonymous, Data Leak

Anonymous Releases 10TB of Leaked Data Targeting Russia

April 17, 2025
Unprotected APIs Expose Data of 33,000 Employees API Security, Data Leak

Unprotected APIs Expose Data of 33,000 Employees

April 17, 2025