Security Intelligence

SonicWall SMA firmware update addresses persistent malware

SonicWall releases new firmware for SMA 100 Series, protecting against the OVERSTEP malware with stronger security and...

Security Intelligence

Collins Aerospace software breach causes airport disruptions throughout the weekend

Ransomware attack on Collins Aerospace's ARINC cMUSE software disrupts major EU airports, forcing manual check-in,...

Security Intelligence

Maximum severity vulnerability in GoAnywhere MFT License Servlet

Fortra patched CVE-2025-10035, a critical GoAnywhere MFT flaw (CVSS 10). Remote, no-click exploit risk—update now and...

Security Intelligence

Critical WatchGuard Firebox VPN vulnerability patched

Critical WatchGuard Firebox VPN flaw (CVE-2025-9242) patched. Update Fireware OS now to prevent RCE attacks. Learn...

Security Intelligence

SonicWall discloses unauthorized access to MySonicWall cloud backup configuration files

SonicWall disclosed on Sept 17, 2025, a breach exposing firewall backup files in MySonicWall accounts; customers with...

Security Intelligence

Self-propagating malware targets GitHub and NPM ecosystems

Supply chain attack hits GitHub & NPM: 187 packages compromised using TruffleHog & Shai-Hulud malware. Learn risks &...

Security Intelligence

Phishing campaign targets Rust developers

A phishing campaign impersonating the Rust Foundation targeted crate developers via spoofed GitHub logins. Learn risks,...

Security Intelligence

CISA warns of exploited flaw in DELMIA Apriso manufacturing software

CISA warns of active exploitation of CVE-2025-5086 in DELMIA Apriso. Critical RCE flaw threatens manufacturing and OT...

Security Intelligence

Akira ransomware campaign against SonicWall: 2 new attack vectors seen

Akira ransomware now exploits two new SonicWall attack vectors: SSLVPN Default Users Group and Virtual Office Portal...

Security Intelligence

September 2025 Patch Tuesday updates for Microsoft

Microsoft’s September 2025 Patch Tuesday fixes 86 flaws, including SMB and Newtonsoft.Json zero days. Learn what’s...

Security Intelligence

Developer Identity Used as Entry Point for npm Supply Chain Attack

npm supply chain attack shows rising phishing risks: compromised maintainer accounts inject malware, highlighting need...

Security Intelligence

Critical vulnerability affecting Argo CD API publicly disclosed

Researchers publicly disclosed a critical vulnerability in Argo CD, a Kubernetes-native continuous deployment tool...