Vulnerability

Cybersecurity researchers have identified a critical vulnerability in legacy Python packages that could enable supply chain attacks on the Python…

Account Takeover (ATO) Fraud schemes are on the rise, with cybercriminals impersonating financial institutions to steal money and sensitive information,…

The sophisticated threat actor known as ToddyCat has been observed employing new and evolving tactics to pilfer corporate email data,…

Cybersecurity researchers have uncovered five critical vulnerabilities in Fluent Bit, a widely used open-source telemetry agent, that could be chained…

A sophisticated new wave of cyberattacks, dubbed “Sha1-Hulud,” is targeting the npm registry, mirroring the tactics of a previous incident…

New research from cybersecurity firm CrowdStrike reveals that DeepSeek’s artificial intelligence (AI) reasoning model, DeepSeek-R1, exhibits a concerning trend: it…

A critical vulnerability within Microsoft’s Windows Server Update Services (WSUS) has been actively exploited by threat actors to distribute the…

Critical Oracle Identity Manager Vulnerability Added to CISA’s Known Exploited Vulnerabilities Catalog The U.S. Cybersecurity and Infrastructure Security Agency (CISA)…

Grafana has issued critical security updates for a severe vulnerability impacting its System for Cross-domain Identity Management (SCIM) component. This…

Google has significantly enhanced its Quick Share service, enabling seamless file and photo transfers between Android and Apple devices. This…

ShadowRay 2.0 is the new guise for ongoing cyberattacks targeting the Ray open-source artificial intelligence (AI) framework. Security researchers at…

Nov 19, 2025Ravie LakshmananVulnerability / Threat Intelligence A critical remote code execution vulnerability in the widely-used 7-Zip file compression utility,…