Elastic has disclosed a high-severity vulnerability (CVE-2024-43706) affecting its Kibana observability platform, specifically in the Synthetic Monitoring...
cybersecurity
A newly disclosed vulnerability in Insyde H2O UEFI firmware, tracked as CVE-2025-4275, allows attackers to bypass Secure...
In its newly released report, Bitsight reveals that more than 40,000 internet-connected security cameras across the globe...
Google has released a Stable Channel update for Chrome Desktop, rolling out version 137.0.7151.103/.104 for Windows and...
Security researchers at HiddenLayer have disclosed a critical privilege escalation vulnerability in Backend.AI, a widely used container-based...
DanaBot—an infamous Malware-as-a-Service (MaaS) operation—unwittingly sabotaged itself with a memory leak flaw eerily reminiscent of the infamous...
A critical denial-of-service (DoS) vulnerability has been identified in CoreDNS, the modular DNS server widely deployed across...
A new high-severity vulnerability discovered by BINARLY REsearch has reignited concerns about the integrity of the UEFI...
A new cyberespionage campaign attributed to the notorious APT group Stealth Falcon has been uncovered by Check...
Microsoft’s June 2025 Patch Tuesday rollout has addressed a substantial 69 vulnerabilities, including 10 critical and 57...
In April, a researcher uncovered a security vulnerability within Google’s account system that allowed them to obtain...
The GeoTools project, a popular open-source Java library used for geospatial data processing, has issued a critical...
A critical Privilege Escalation vulnerability has been disclosed in the RealHomes WordPress theme, a popular real estate...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited...
SentinelLABS has unveiled an extensive report detailing a wave of cyber-espionage activity that directly targeted SentinelOne and...
Security researcher Matt Palmer has uncovered a critical vulnerability in the Lovable low-code platform, now tracked as...
In its latest Advanced Persistent Threat (APT) campaign, Kimsuky, a North Korea-linked group, has returned with an...
Seqrite Labs APT-Team has uncovered a targeted campaign against China Mobile Tietong Co., Ltd., a prominent subsidiary...
KUNBUS has issued a critical security advisory for its RevPi Webstatus application following the discovery of an...
APT41—also known as BARIUM, Wicked Panda, and Brass Typhoon—is a well-known Chinese state-sponsored APT group notorious for...
Socket’s Threat Research Team has uncovered ‘imad213’, a credential-harvesting tool masquerading as an Instagram booster. Behind its...
In a detailed expose released by ESET, researchers unveiled a sophisticated and persistent cyberespionage campaign by an...