Security Intelligence

POCs published for unpatched RCE vulnerabilities in D-Link routers

Critical, unauthenticated RCE flaws in D-Link’s DIR-878 060 router series now have public PoC exploits available. No...

Security Intelligence

Vulnerability in Chrome’s V8 engine actively exploited

A Chrome V8 type confusion flaw (CVE-2025-13223) is being exploited in the wild, affecting Chrome and other...

Security Intelligence

Fortinet discloses new FortiWeb flaw exploited before patch release

Fortinet published a security advisory disclosing CVE-2025-58034, a medium-severity flaw in FortiWeb that had been...

Security Intelligence

Akira ransomware targeting Nutanix AHV

Akira ransomware actors are adopting new TTPs, including targeting of virtual infrastructure such as Nutanix AHV and...

Security Intelligence

Weekly Threat Round-up: Synology Updates BeeStation, SAP Patch Day Releases, & Google Updates on AI Weaponization

November 17th, 2025 Threat Round-up: This week’s top threat intelligence newsletter updates include Synology patches...

Security Intelligence

Active exploitation of undisclosed FortiWeb flaw

A critical, actively exploited path traversal flaw in Fortinet FortiWeb allows unauthenticated attackers to create...

Security Intelligence

Publicly disclosed flaw enables RCE via malware scanning engine

CloudLinux patched a high-risk ImunifyAV/Imunify360 flaw in the AI-Bolit scanning engine that enables remote code...

Security Intelligence

Synology updates BeeStation OS following Pwn2Own demonstration

Synology patched a critical BeeStation OS vulnerability caused by a buffer overflow that could enable remote code...

Security Intelligence

SAP November Patch Day includes max-severity vulnerability

SAP’s November Patch Day fixed 18 vulnerabilities, including two critical flaws in SQL Anywhere Monitor and Solution...

Security Intelligence

Critical QNAP NAS flaws patched following Pwn2Own demonstrations

QNAP patched critical NAS flaws, several of which were revealed at Pwn2Own 2025, that could enable remote code...

Security Intelligence

Weekly Threat Round-up: Cisco Patches, SesameOp Malware Uses OpenAI API, & Balancer Cryptoheist

November 10th, 2025 Threat Round-up: Stay ahead of emerging cyber risks with this week’s top threat intelligence...

Security Intelligence

Google Threat Intelligence Group reports on adversaries weaponizing AI tools

Google Threat Intelligence Group uncovered new AI-driven malware using tools like Gemini and Hugging Face to automate...