Do Son
A critical XML External Entity (XXE) injection vulnerability has been identified in WebDriverManager, an essential Java library...
Zscaler ThreatLabz has uncovered a new and dangerous malware loader dubbed TransferLoader, actively used in the wild...
The PgPool Global Development Group has issued a high-severity security advisory for Pgpool-II, a widely used middleware...
Jenkins, a popular open-source automation server, is a crucial tool for many development and operations teams. A...
A recent report by DTEX sheds light on the sophisticated and complex cyber operations of the Democratic...
Network Attached Storage (NAS) devices have become essential components of both home and business networks, providing centralized...
ESET researchers have exposed a covert cyberespionage campaign, dubbed Operation RoundPress, believed to be orchestrated by the...
A newly disclosed Server-Side Request Forgery (SSRF) vulnerability in SonicWall’s SMA1000 series appliances could allow remote attackers...
The rapid expansion of cloud computing, remote work, and interconnected applications has made Identity and Access Management...
JPCERT/CC has issued a vulnerability note disclosing multiple security flaws in a-blog cms, a popular content management...
Google has released a critical Stable Channel Update for Chrome Desktop, bumping the version to 136.0.7103.113/.114 for...
Node.js Alerts: High-Severity Flaw (CVE-2025-23166) Risks Remote System Crashes! Update Immediately!
Node.js Alerts: High-Severity Flaw (CVE-2025-23166) Risks Remote System Crashes! Update Immediately!
In an important security announcement released recently, the Node.js team has rolled out vital updates for its...
Security researchers have demonstrated a powerful software-only technique to bypass Microsoft BitLocker encryption—without needing a screwdriver, soldering...
First spotted in 2022 and actively developed ever since, DarkCloud Stealer has reemerged with a sophisticated new...
Apache IoTDB, a system designed for managing industrial IoT time-series data, faces a series of security vulnerabilities...
Fortinet has released patches for a critical vulnerability (CVE-2025-22252, CVSS 9.0) affecting multiple products, including FortiOS, FortiProxy,...
A sophisticated ransomware campaign targeting National Defense Corporation (NDC) and its subsidiaries affected the defense supply chain,...
Security researchers at ETH Zürich have unveiled a novel speculative execution attack—Branch Privilege Injection (CVE-2024-45332)—that subverts Intel’s...
Malware authors have begun exploiting Google Calendar invites and Unicode Private Use Area (PUA) characters to deliver...
A pair of critical-severity vulnerabilities in the OpenPubkey authentication protocol and its companion tool, OPKSSH, could allow...