Security Intelligence
Storm‑1175 exploits web‑facing vulnerabilities in Medusa ransomware operations
Storm-1175, a threat actor tied to Medusa ransomware, exploits new vulnerabilities within hours and uses admin tools to...
Security Intelligence
Storm-1175, a threat actor tied to Medusa ransomware, exploits new vulnerabilities within hours and uses admin tools to...
Security Intelligence
Critical FortiClient EMS vulnerability actively exploited, allowing authentication bypass and admin control. Apply...
Security Intelligence
Chained vulnerabilities in Progress ShareFile Storage Zones Controller enable unauthenticated attackers to achieve...
Security Intelligence
Axios supply chain compromise exposed organizations after attackers published malicious versions using a compromised...
Security Intelligence
A supply chain attack tied to TeamPCP is escalating, with stolen credentials used to access AWS, compromise CI/CD...
Security Intelligence
Actively exploited F5 BIG-IP APM vulnerability (CVE-2025-53521) enables unauthenticated RCE on exposed...
Security Intelligence
TeamPCP is targeting open-source ecosystems with a large-scale supply chain attack, using stolen credentials to...
Security Intelligence
Critical Citrix NetScaler vulnerabilities could enable session hijacking and authentication bypass—patch now to reduce...
Security Intelligence
A critical authentication bypass vulnerability in Quest KACE SMA is being actively exploited, enabling attackers to...
Security Intelligence
Critical Langflow vulnerability under active exploitation allows unauthenticated remote code execution, putting exposed...
Security Intelligence
A supply-chain attack targeting the widely used Trivy scanner allowed attackers to inject malicious code into trusted...
Security Intelligence
HPE released updates for Aruba AOS-CX switches to fix multiple vulnerabilities, including a critical authentication...