Cyber Security
“`html Security expert Eaton Zveare has revealed significant vulnerabilities in Tata Motors’ infrastructure that unveiled over 70 terabytes of confidential information, inclusive of consumer personal data, financial statements, and fleet oversight specifics. The...
Cyber Security
“`html The Apache Software Foundation has underscored critical weaknesses in Apache Tomcat, a popular open-source Java servlet container that supports numerous web applications. On October 27, 2025, Apache revealed two vulnerabilities, CVE-2025-55752 and...
Cyber Security
“`html An advanced phishing strategy known as CoPhish leverages Microsoft Copilot Studio to deceive individuals into granting hackers unauthorized entry to their Microsoft Entra ID accounts. Identified by Datadog Security Labs, this technique utilizes adaptable...
Cyber Security
“`html A critical vulnerability in BIND 9 resolvers has been revealed, possibly allowing attackers to contaminate caches and reroute internet traffic to harmful sites. Designated as CVE-2025-40778, this weakness impacts more than 706,000 exposed instances...
Cyber Security
“`html The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has alerted organizations globally regarding active exploitation of a significant remote code execution (RCE) flaw in Microsoft’s Windows Server Update Services (WSUS). Categorized as...
Cyber Security
“`html A complex data-stealing software identified as Vidar Stealer has undergone an extensive structural overhaul with the launch of version 2.0, introducing enhanced features that allow it to circumvent Chrome’s newest security measures via direct memory...
Cyber Security
“`html Cloud account takeover assaults have progressed into a complex danger as cybercriminals and state-sponsored entities increasingly exploit OAuth applications to secure ongoing access to compromised ecosystems. These nefarious individuals are taking...
Cyber Security
“`html Google has promptly tackled a critical vulnerability in the V8 JavaScript engine of its Chrome browser, issuing an urgent update to prevent possible remote code execution assaults. The security flaw, identified as CVE-2025-12036, arises from an erroneous...
Cyber Security
“`html The Cybersecurity and Infrastructure Security Agency (CISA) released an urgent notification on October 20, 2025, emphasizing a critical vulnerability CVE-2025-33073 in Microsoft’s Windows SMB Client. Identified as an improper access control defect, this...
Cyber Security
“`html A critical vulnerability within the Pluggable Authentication Modules (PAM) framework has been assigned the identifier CVE-2025-8941. This flaw originates from the core of Linux operating systems, allowing adversaries with local access to perform symlink...
