HTTP/2 Bomb: How Default Configurations Open a New DoS Vector
Jun 04, 2026
Categories
Top Articles
CVE-2025-48595: June 2026 Android Security Update Fixes Framework Zero-Day
Jun 03, 2026
Charter Data Breach: ShinyHunters Claims 42 Million Records Stolen on the Dark Web
May 29, 2026
April 2026: ShinyHunters Hits Medtronic and ADT as North Korean Hackers Drain DeFi Protocols
May 29, 2026
TrapDoor: Malicious npm, PyPI, Crates.io Packages Target Developer Secrets & AI Tooling
May 25, 2026
Sep 02, 2024
Exploits Released for Critical Flaws in WhatsUp Gold and Jenkins, Patc...
Exploits Released for Critical Flaws in WhatsUp Gold and Jenkins, Patch Now (CVE-2024-6670, CVE-2024-43044) [Update] September 13, 2024: “Exploitation Activity on Progress WhatsUp Gold Vulnerabilities...
Learn More
Aug 28, 2024
Pre-Auth RCE Vulnerability in Apache OFBiz (CVE-2024-38856) Is Under A...
Pre-Auth RCE Vulnerability in Apache OFBiz (CVE-2024-38856) Is Under Active Exploitation, CISA Warns [Update] September 6, 2024: “New RCE Vulnerability (CVE-2024-45195) Discovered in Apache OFBiz, Pat...
Learn More
Aug 26, 2024
Vulnerability in Python's pandas Library (CVE-2024-42992)
Vulnerability in Python’s pandas Library (CVE-2024-42992) [Update] August 27, 2024: CVE has been marked “REJECT” in the CVE List. Find more information in the blog post. Python’s popular data analysis...
Learn More
Aug 14, 2024
August 2024 Patch Tuesday Highlights: 89 CVEs, 6 Zero-Day Vulnerabilit...
August 2024 Patch Tuesday Highlights: 89 CVEs, 6 Zero-Day Vulnerabilities Under Exploitation [Update] September 4, 2024: “Details of CVE-2024-38106 and PoC Exploit” [Update] August 20, 2024: “Lazarus ...
Learn More
Aug 08, 2024
Critical Vulnerabilities in Progress WhatsUp Gold, Jenkins Could Lead ...
Critical Vulnerabilities in Progress WhatsUp Gold, Jenkins Could Lead to RCE Attacks (CVE-2024-4885, CVE-2024-43044) A critical vulnerability in Progress WhatsUp Gold, recently patched, has been activ...
Learn More
Aug 08, 2024
Unlocking the Future of Cybersecurity: SOCRadar’s Advanced AI Training...
Unlocking the Future of Cybersecurity: SOCRadar’s Advanced AI Training Returns The cybersecurity landscape constantly evolves, and staying ahead of emerging threats with complicated risks is more cruc...
Learn More
Aug 07, 2024
SOCRadar Recognized in Gartner Report on Digital Risk Protection Servi...
SOCRadar Recognized in Gartner Report on Digital Risk Protection Services and External Attack Surface Management Again In a report published by Gartner on its website on July 29, 2024, SOCRadar was hi...
Learn More
Aug 06, 2024
Major Cyber Attacks in Review: July 2024
Major Cyber Attacks in Review: July 2024 July 2024 has been marked by a series of high-impact cyber attacks, affecting millions of individuals and numerous organizations. Amidst numerous threat activi...
Learn More
Aug 05, 2024
SOCRadar's Response to the USDoD’s Claim of Scraping 330 Million Email...
SOCRadar’s Response to the USDoD’s Claim of Scraping 330 Million Emails TL;DR The claim that the threat actor extracted the data from the SOCRadar platform is inaccurate and does not reflect the t...
Learn More
Aug 02, 2024
Critical Bitdefender Patch for GravityZone Update Server: CVE-2024-698...
Critical Bitdefender Patch for GravityZone Update Server: CVE-2024-6980 Could Lead to SSRF Attacks Bitdefender, a provider of cybersecurity solutions, has recently patched a critical vulnerability (CV...
Learn More
Jul 30, 2024
VMware ESXi Hypervisor Vulnerability (CVE-2024-37085) Exploited by Ran...
VMware ESXi Hypervisor Vulnerability (CVE-2024-37085) Exploited by Ransomware Groups, Microsoft Warns [Update] July 31, 2024: “CISA Adds VMware ESXi Hypervisor Vulnerability (CVE-2024-37085) to KEV Ca...
Learn More
Jul 30, 2024
ShadowRoot Ransomware Campaign
ShadowRoot Ransomware Campaign The ShadowRoot ransomware campaign represents a significant cybersecurity threat targeting Turkish businesses. This campaign, identified by the X-Labs research team, uti...
Learn More
Jul 24, 2024
Docker Fixed an AuthZ Bypass Flaw Leading to Privilege Escalation: CVE...
Docker Fixed an AuthZ Bypass Flaw Leading to Privilege Escalation: CVE-2024-41110 On July 23, 2024, Docker issued an advisory regarding a security vulnerability in the authorization plugins (AuthZ), u...
Learn More
Jul 24, 2024
Laravel Framework Affected by a New Critical Vulnerability (CVE-2024-4...
Laravel Framework Affected by a New Critical Vulnerability (CVE-2024-40075): Patch Now A very critical vulnerability, designated as CVE-2024-40075, has emerged in the Laravel PHP framework. This flaw ...
Learn More
Jul 20, 2024
Suspicious Domains Exploiting the Recent CrowdStrike Outage!
Suspicious Domains Exploiting the Recent CrowdStrike Outage! [Update] July 23, 2024: “Researchers Warn of Phishing Scenarios Exploiting the CrowdStrike Outage by Cybercriminals”, “Exploiting Real Time...
Learn More
Jul 19, 2024
CrowdStrike Update Causing Blue Screen of Death and Microsoft 365/Azur...
CrowdStrike Update Causing Blue Screen of Death and Microsoft 365/Azure Outage [Update] August 7, 2024: “New Root Cause Analysis” [Update] July 19, 2024: “Official Statement from the CrowdStrike CEO a...
Learn More
Jul 18, 2024
Critical Vulnerabilities in SolarWinds ARM, Serv-U, and Cisco SSM On-P...
Critical Vulnerabilities in SolarWinds ARM, Serv-U, and Cisco SSM On-Prem, Secure Email Gateway Products [Update] August 9, 2024: “Proof-of-Concept Exploit Available for CVE-2024-20419 Vulnerability” ...
Learn More
Jul 11, 2024
Microsoft Fixes CVE-2024-38112 After Over a Year of Exploitation; Zero...
Microsoft Fixes CVE-2024-38112 After Over a Year of Exploitation; Zero-Click Threat of CVE-2024-38021 [Update] August 21, 2024: “Researchers Reveal Technical Details of CVE-2024-38021, Urge Reassessme...
Learn More
Jul 11, 2024
Major Cyber Attacks in Review: June 2024
Major Cyber Attacks in Review: June 2024 June 2024 has been a whirlwind of significant cyber attacks targeting high-profile organizations worldwide. Following the ongoing Snowflake-related issues, the...
Learn More
Jul 10, 2024
July 2024 Patch Tuesday Fixes 139 CVEs, Actively Exploited Zero-Days; ...
July 2024 Patch Tuesday Fixes 139 CVEs, Actively Exploited Zero-Days; CISA Highlights Citrix Updates [Update] September 17, 2024: “PoC Exploit Available for CVE-2024-38080 in Windows Hyper-V” [Update...
Learn More
