cybersecurity

Ruckus Wireless Exposed: 9 Critical Vulnerabilities Leave Wi-Fi Management Systems Wide Open, No Patch!

• Vulnerability Report

Ruckus Wireless Exposed: 9 Critical Vulnerabilities Leave Wi-Fi Management Systems Wide Open, No Patch!

Ddos July 10, 2025 0

Multiple critical vulnerabilities have been discovered in Ruckus Wireless’ Virtual SmartZone (vSZ) and Network Director (RND), posing...

Read More Read more about Ruckus Wireless Exposed: 9 Critical Vulnerabilities Leave Wi-Fi Management Systems Wide Open, No Patch!

From Stealer to Spy: AMOS Malware Evolves into Full-Fledged Backdoor Threat for macOS

• Malware

From Stealer to Spy: AMOS Malware Evolves into Full-Fledged Backdoor Threat for macOS

Ddos July 10, 2025 0

In a disturbing evolution of macOS malware, Moonlock Lab has discovered that Atomic macOS Stealer (AMOS)—already notorious...

Read More Read more about From Stealer to Spy: AMOS Malware Evolves into Full-Fledged Backdoor Threat for macOS

Opossum Attack: New Vulnerability Compromises Encrypted TLS Connections, Allowing MitM & Data Injection

• Vulnerability Report

Opossum Attack: New Vulnerability Compromises Encrypted TLS Connections, Allowing MitM & Data Injection

Ddos July 10, 2025 0

Researchers have unveiled the Opossum Attack, a novel class of desynchronization vulnerabilities that exploits the coexistence of...

Read More Read more about Opossum Attack: New Vulnerability Compromises Encrypted TLS Connections, Allowing MitM & Data Injection

Critical Vulnerabilities Found in Schneider Electric’s EcoStruxure IT Data Center Expert

• Vulnerability Report

Critical Vulnerabilities Found in Schneider Electric’s EcoStruxure IT Data Center Expert

Ddos July 10, 2025 0

Schneider Electric has issued a high-severity security advisory disclosing multiple vulnerabilities affecting its flagship infrastructure management platform,...

Read More Read more about Critical Vulnerabilities Found in Schneider Electric’s EcoStruxure IT Data Center Expert

Ongoing Attacks Exploit GeoServer RCE Flaw (CVE-2024-36401) to Install NetCat and XMRig CoinMiner

• Malware
• Vulnerability Report

Ongoing Attacks Exploit GeoServer RCE Flaw (CVE-2024-36401) to Install NetCat and XMRig CoinMiner

Ddos July 10, 2025 0

The AhnLab Security Intelligence Center (ASEC) has issued a fresh warning on the ongoing exploitation of a...

Read More Read more about Ongoing Attacks Exploit GeoServer RCE Flaw (CVE-2024-36401) to Install NetCat and XMRig CoinMiner

CISA Warns of Critical Flaws in Emerson ValveLink Software: Exploits Could Lead to Code Execution and Data Exposure

• Vulnerability Report

CISA Warns of Critical Flaws in Emerson ValveLink Software: Exploits Could Lead to Code Execution and Data Exposure

Ddos July 10, 2025 0

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent security advisory highlighting multiple critical vulnerabilities...

Read More Read more about CISA Warns of Critical Flaws in Emerson ValveLink Software: Exploits Could Lead to Code Execution and Data Exposure

Gold Melody’s Stealthy Campaign: Leaked ASP.NET Machine Keys Fuel In-Memory RCE & Privilege Escalation

• Cybercriminals

Gold Melody’s Stealthy Campaign: Leaked ASP.NET Machine Keys Fuel In-Memory RCE & Privilege Escalation

Ddos July 10, 2025 0

In a significant revelation from Unit 42, Palo Alto Networks’ threat intelligence team, researchers have uncovered a...

Read More Read more about Gold Melody’s Stealthy Campaign: Leaked ASP.NET Machine Keys Fuel In-Memory RCE & Privilege Escalation

Hardcoded Credentials & Command Injection Found in HPE Aruba Instant On Access Points

• Vulnerability

Hardcoded Credentials & Command Injection Found in HPE Aruba Instant On Access Points

Ddos July 9, 2025 0

HPE Aruba Networking has issued a critical security advisory for its Instant On Access Points, urging users...

Read More Read more about Hardcoded Credentials & Command Injection Found in HPE Aruba Instant On Access Points

Rockerbox Data Leak Exposes 245,949 Records: SSNs, Driver’s Licenses, Military IDs Leaked from Unsecured Cloud

• Data Leak

Rockerbox Data Leak Exposes 245,949 Records: SSNs, Driver’s Licenses, Military IDs Leaked from Unsecured Cloud

Ddos July 9, 2025 0

Cybersecurity researcher Jeremiah Fowler, in collaboration with vpnMentor, discovered an unencrypted and non-password-protected database containing 245,949 records,...

Read More Read more about Rockerbox Data Leak Exposes 245,949 Records: SSNs, Driver’s Licenses, Military IDs Leaked from Unsecured Cloud

Android Privacy Alert: Google Gemini AI Now Accesses WhatsApp, Texts & Calls by Default

• Android
• Data Leak

Android Privacy Alert: Google Gemini AI Now Accesses WhatsApp, Texts & Calls by Default

Ddos July 9, 2025 0

If you are an Android user with the Google Gemini AI application installed, it is strongly advised...

Read More Read more about Android Privacy Alert: Google Gemini AI Now Accesses WhatsApp, Texts & Calls by Default

Zoom Patches 6 Flaws: DoS, Info Disclosure & XSS Across All Platforms

• Vulnerability Report

Zoom Patches 6 Flaws: DoS, Info Disclosure & XSS Across All Platforms

Ddos July 9, 2025 0

Zoom has rolled out a security update patching six newly disclosed vulnerabilities affecting its Workplace, Rooms, and...

Read More Read more about Zoom Patches 6 Flaws: DoS, Info Disclosure & XSS Across All Platforms

Git Project Patches 3 Flaws: RCE, Arbitrary File Writes & Buffer Overflow

• Vulnerability Report

Git Project Patches 3 Flaws: RCE, Arbitrary File Writes & Buffer Overflow

Ddos July 9, 2025 0

The Git Project has released updates addressing three significant vulnerabilities impacting Git versions up to v2.50.0, including...

Read More Read more about Git Project Patches 3 Flaws: RCE, Arbitrary File Writes & Buffer Overflow

VS Code ETHcode Extension Hacked: Just 2 Lines of Code Led to Supply Chain Compromise Via GitHub PR

• Malware

VS Code ETHcode Extension Hacked: Just 2 Lines of Code Led to Supply Chain Compromise Via GitHub PR

Ddos July 9, 2025 0

Researchers at ReversingLabs (RL) have uncovered a supply chain compromise of the popular ETHcode extension for Visual...

Read More Read more about VS Code ETHcode Extension Hacked: Just 2 Lines of Code Led to Supply Chain Compromise Via GitHub PR

Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks

• Vulnerability Report

Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks

Ddos July 9, 2025 0

iemens has released a critical security advisory detailing multiple high-severity vulnerabilities affecting SINEC NMS, its flagship network...

Read More Read more about Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks

Citrix Warns of Privilege Escalation Vulnerability in Windows Virtual Delivery Agent (CVE-2025-6759)

• Vulnerability Report

Citrix Warns of Privilege Escalation Vulnerability in Windows Virtual Delivery Agent (CVE-2025-6759)

Ddos July 9, 2025 0

Citrix has issued a security advisory concerning a newly identified local privilege escalation vulnerability affecting its Windows...

Read More Read more about Citrix Warns of Privilege Escalation Vulnerability in Windows Virtual Delivery Agent (CVE-2025-6759)

Microsoft’s July 2025 Patch Tuesday: 140 Flaws Fixed, Including Zero-Day, RCEs & AMD CPU Threats

• Vulnerability Report

Microsoft’s July 2025 Patch Tuesday: 140 Flaws Fixed, Including Zero-Day, RCEs & AMD CPU Threats

Ddos July 9, 2025 0

Microsoft’s July 2025 Patch Tuesday arrives with a hefty load: a total of 140 vulnerabilities patched, including...

Read More Read more about Microsoft’s July 2025 Patch Tuesday: 140 Flaws Fixed, Including Zero-Day, RCEs & AMD CPU Threats

Philippines Hit by Surge in Chinese Cybercrime: NFC & Smishing Attacks Steal Millions from Mobile Wallets

• Cybercriminals

Philippines Hit by Surge in Chinese Cybercrime: NFC & Smishing Attacks Steal Millions from Mobile Wallets

Ddos July 9, 2025 0

As digital wallets and contactless payments revolutionize commerce in the Philippines, they’ve also opened a dangerous new...

Read More Read more about Philippines Hit by Surge in Chinese Cybercrime: NFC & Smishing Attacks Steal Millions from Mobile Wallets

Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6)

• Vulnerability Report

Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6)

Ddos July 9, 2025 0

Fortinet has released a critical patch to address a serious vulnerability in its FortiWeb product — a...

Read More Read more about Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6)

Critical Flaws in Phoenix Contact EV Charging Controllers Expose Infrastructure to Remote Code Execution and Unauthorized Access

• Vulnerability Report

Critical Flaws in Phoenix Contact EV Charging Controllers Expose Infrastructure to Remote Code Execution and Unauthorized Access

Ddos July 9, 2025 0

In a coordinated disclosure with CERT@VDE, Phoenix Contact GmbH & Co. KG has issued an urgent advisory...

Read More Read more about Critical Flaws in Phoenix Contact EV Charging Controllers Expose Infrastructure to Remote Code Execution and Unauthorized Access

Google’s New Android Advanced Protection Supercharges Chrome Security for High-Risk Users

• Android

Google’s New Android Advanced Protection Supercharges Chrome Security for High-Risk Users

Ddos July 8, 2025 0

Google has unveiled a significant enhancement to its Advanced Protection Program, bringing its strongest account-level defenses into...

Read More Read more about Google’s New Android Advanced Protection Supercharges Chrome Security for High-Risk Users