Cyber Security
“`html More than 10,000 Fortinet firewalls globally remain exposed to CVE-2020-12812, a vulnerability allowing bypass of multi-factor authentication (MFA) identified over five and a half years ago. Recently, Shadowserver incorporated the issue into its daily...
Cyber Security
“`html The cybersecurity environment in 2025 has experienced an extraordinary increase in significant vulnerabilities, with more than 21,500 CVEs revealed in merely the first six months of the year, indicating a 16-18% rise when compared to 2024. Among these, a...
Cyber Security
“`html A fresh onset of GlassWorm malware has surfaced, representing a notable change in targeting approach from Windows to macOS platforms. This self-replicating worm, disseminated via harmful VS Code extensions on the Open VSX marketplace, has already amassed...
Cyber Security
“`html A vast-scale web skimming scheme has surfaced throughout the internet, targeting online consumers and account holders with unparalleled reach. Security analysts have detected an extensive global initiative with over 50 scripts that seize sensitive data...
Cyber Security
“`html Chinese cyber adversaries known as Silver Fox are targeting Indian institutions via advanced phishing operations that mimic genuine income tax documents. This attack campaign leverages authentic-looking emails from the Income Tax Department to deceive...
Cyber Security
“`html Cybercriminals have disclosed a database comprising over 2.3 million WIRED subscriber records, signaling a significant violation at Condé Nast, the parent organization. The malicious entity “Lovely” asserts this is merely the beginning, vowing to unveil...
Cyber Security
“`html A critical-severity flaw in MongoDB Server that enables unauthorized remote attackers to extract sensitive information from database memory. Named “MongoBleed” due to its automated similarities with the notorious Heartbleed vulnerability, the defect is...
Cyber Security
“`html A vulnerability concerning information leakage in M-Files Server allows verified attackers to intercept and reuse session tokens belonging to active users, potentially granting unauthorized entry to sensitive document management systems. This defect,...
Cyber Security
“`html A significant vulnerability in LangChain’s fundamental library (CVE-2025-68664) permits malicious actors to extract confidential environment variables and potentially execute code via deserialization vulnerabilities. Identified by a researcher from Cyata...
Cyber Security
“`html Microsoft has revealed hardware-accelerated BitLocker, a notable security upgrade aimed at eliminating performance restrictions caused by encryption on contemporary high-speed NVMe drives. This innovative technology tackles the increasing worries...
