CVE-2025-48595: June 2026 Android Security Update Fixes Framework Zero-Day
Jun 03, 2026
Categories
Top Articles
Charter Data Breach: ShinyHunters Claims 42 Million Records Stolen on the Dark Web
May 29, 2026
April 2026: ShinyHunters Hits Medtronic and ADT as North Korean Hackers Drain DeFi Protocols
May 29, 2026
TrapDoor: Malicious npm, PyPI, Crates.io Packages Target Developer Secrets & AI Tooling
May 25, 2026
CVE-2026-20223: Cisco Secure Workload Auth Bypass Grants Site Admin Access
May 22, 2026
Aug 18, 2025
CVE-2025-20265: RCE Flaw in Cisco Secure Firewall FMC RADIUS Authentic...
CVE-2025-20265: RCE Flaw in Cisco Secure Firewall FMC RADIUS Authentication Cisco has disclosed a critical vulnerability affecting Secure Firewall Management Center Software, along with 28 additional ...
Learn More
Aug 15, 2025
MadeYouReset: New HTTP/2 DoS Vulnerability Explained
MadeYouReset: New HTTP/2 DoS Vulnerability Explained A newly disclosed technique called “MadeYouReset” lets attackers coax HTTP/2 servers into resetting their own streams, slipping past many Rapid Res...
Learn More
Aug 14, 2025
CVE-2025-25256: FortiSIEM Flaw Enables Unauthenticated RCE
CVE-2025-25256: FortiSIEM Flaw Enables Unauthenticated RCE A new critical vulnerability in Fortinet’s FortiSIEM platform is drawing urgent attention. With exploit code already circulating in the wild ...
Learn More
Aug 13, 2025
August 2025 Patch Tuesday: Microsoft Fixes 111 CVEs & Publicly Disclos...
August 2025 Patch Tuesday: Microsoft Fixes 111 CVEs & Publicly Disclosed Kerberos Zero-Day (CVE-2025-53779) [Update] “Post-Patch Findings on BadSuccessor (CVE-2025-53779)” Microsoft has rolled out...
Learn More
Aug 11, 2025
Salesforce-Related Data Breach Affecting Multiple Companies
Salesforce-Related Data Breach Affecting Multiple Companies [Update] August 12, 2025: “ShinyHunters Reopens Telegram Channel, Claims BreachForums Is Law Enforcement–Run” In mid-2025, a series of coord...
Learn More
Aug 11, 2025
CVE-2025-8088: WinRAR Zero-Day Exploited in Targeted Attacks
CVE-2025-8088: WinRAR Zero-Day Exploited in Targeted Attacks A newly discovered zero-day vulnerability in the popular file archive tool WinRAR, tracked as CVE-2025-8088, has been actively exploited in...
Learn More
Aug 08, 2025
CVE-2025-53786: CISA Issues Emergency Directive for Critical Microsoft...
CVE-2025-53786: CISA Issues Emergency Directive for Critical Microsoft Exchange Hybrid Vulnerability On August 7, 2025, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an Emerg...
Learn More
Aug 07, 2025
CVE-2025-54948 & CVE-2025-54987: Trend Micro Apex One Exploited for RC...
CVE-2025-54948 & CVE-2025-54987: Trend Micro Apex One Exploited for RCE Trend Micro has recently disclosed two critical vulnerabilities, CVE-2025-54948 and CVE-2025-54987, affecting its Apex One o...
Learn More
Aug 06, 2025
Akira Exploits SonicWall SSLVPN in Suspected Zero-Day Attacks
Akira Exploits SonicWall SSLVPN in Suspected Zero-Day Attacks [Update] Surge in Exploitation of CVE-2024-40766 by Akira [Update] SonicWall Links Attacks to CVE-2024-40766, Not a Zero-Day A string of ...
Learn More
Aug 01, 2025
Critical OAuth2-Proxy Vulnerability (CVE-2025-54576) Lets Attackers By...
Critical OAuth2-Proxy Vulnerability (CVE-2025-54576) Lets Attackers Bypass Authentication A security flaw has been found in OAuth2-Proxy, a tool that helps secure web applications using OAuth2 or OIDC...
Learn More
Jul 25, 2025
June 2025: Qantas, 23andMe, Zoomcar, and Coinbase Breaches Lead Impact
June 2025: Qantas, 23andMe, Zoomcar, and Coinbase Breaches Lead Impact June 2025 witnessed a wave of impactful cyber incidents spanning government agencies, critical infrastructure, healthcare, and ma...
Learn More
Jul 25, 2025
Critical SonicWall SMA Vulnerability CVE-2025-40599: What You Need to ...
Critical SonicWall SMA Vulnerability CVE-2025-40599: What You Need to Know SonicWall has disclosed a critical vulnerability in its SMA 100 series remote access devices, tracked as CVE-2025-40599. This...
Learn More
Jul 24, 2025
What Happened to XSS.is? Everything You Need to Know About the Forum T...
What Happened to XSS.is? Everything You Need to Know About the Forum Takedown This week, authorities made a major move against the cybercrime underground. After years of investigation, the suspected a...
Learn More
Jul 21, 2025
ToolShell Campaign: New SharePoint Zero-Day (CVE-2025-53770) Triggers ...
ToolShell Campaign: New SharePoint Zero-Day (CVE-2025-53770) Triggers Widespread Exploitation [Update] October 23, 2025: Broader Exploitation of ToolShell Vulnerability by Chinese Threat Actors [Updat...
Learn More
Jul 21, 2025
CVE‑2025‑37103: Remote Access Risk in Aruba Instant On Access Points D...
CVE‑2025‑37103: Remote Access Risk in Aruba Instant On Access Points Due to Hardcoded Passwords HPE has disclosed a critical vulnerability in Aruba Instant On access points. The flaw involves a hardco...
Learn More
Jul 21, 2025
CVE-2025-54309: New CrushFTP Zero-Day Exploited in the Wild
CVE-2025-54309: New CrushFTP Zero-Day Exploited in the Wild [Update] “Exploit Details and PoC for CVE-2025-54309 Released” A zero-day vulnerability in CrushFTP, tracked as CVE-2025-54309, is under act...
Learn More
Jul 17, 2025
CVE-2025-25257: Attackers Exploit FortiWeb SQL Injection Bug for Remot...
CVE-2025-25257: Attackers Exploit FortiWeb SQL Injection Bug for Remote Code Execution Cybersecurity researchers have sounded the alarm on an actively exploited vulnerability, tracked as CVE-2025-2525...
Learn More
Jul 17, 2025
Cisco ISE Hit by CVSS 10 RCE Vulnerabilities Allowing Full System Take...
Cisco ISE Hit by CVSS 10 RCE Vulnerabilities Allowing Full System Takeover – Patch Now On July 16, Cisco published multiple security advisories disclosing a total of nine vulnerabilities across severa...
Learn More
Jul 16, 2025
Operation Eastwood Targets NoName057(16) in Global Crackdown
Operation Eastwood Targets NoName057(16) in Global Crackdown An international effort, Operation Eastwood, has recently delivered a decisive blow to one of the most active pro-Russian cybercrime groups...
Learn More
Jul 16, 2025
MITRE Launches AADAPT Framework to Secure Digital Assets
MITRE Launches New AADAPT Framework to Secure Digital Assets Threats to the foundations of the digital finance ecosystem are growing at a rapid pace. From cryptocurrency to smart contracts, vulnerabil...
Learn More
