Adobe fixes 11 critical ColdFusion vulnerabilities in April 2025, urging updates to prevent file reads and code execution.

AWS patched an EC2 SSM Agent flaw on March 5, 2025, preventing privilege escalation via plugin ID path traversal.

Fortinet has released security updates to address a critical security flaw impacting FortiSwitch that could permit an ...

A recently disclosed critical security flaw impacting CrushFTP has been added by the U.S. Cybersecurity and Infrastructure ...

Google patched 62 flaws, including two actively exploited kernel bugs, closing exploit chains used in Android attacks.

CERT-UA identifies GIFTEDCROOK malware stealing browser data via phishing Excel files in attacks targeting Ukrainian ...

This week, we trace how simple oversights turn into major breaches — and the silent threats most companies still ...

Fast flux exploits DNS gaps to evade takedowns since 2007, enabling resilient malware and phishing operations.

PoisonSeed exploits CRM credentials to spread cryptocurrency seed phrase attacks, risking major wallet compromises.

MFA bypass attacks surge with session hijacking and token theft, requiring layered defenses to limit breach impact.

EncryptHub, also tracked under the monikers LARVA-208 and Water Gamayun, was spotlighted in mid-2024 as part of a campaign ...

GitHub Copilot adoption rose 27% (2023–2024), causing a 40% spike in secret leaks, widening enterprise attack surfaces.