Security Intelligence

MuddyWater expands Rust‑based operations and exposes build artefacts

MuddyWater is using a new Rust-based malware, RustyWater, delivered via malicious Word documents. Learn how to detect,...

Security Intelligence

POC available for critical vulnerability in Trend Micro Apex Central

A critical RCE vulnerability in Trend Micro Apex Central enables SYSTEM-level compromise. Public PoC increases risk;...

Security Intelligence

Veeam fixes 4 vulnerabilities in Backup & Replication that enable RCE

Veeam has patched multiple vulnerabilities in Backup & Replication that enable authenticated RCE. Learn who’s affected,...

Security Intelligence

Maximum‑severity ‘Ni8mare’ flaw exposes n8n to full system compromise

CVE-2026-21858 is a critical n8n vulnerability enabling unauthenticated remote code execution, continuing a recent wave...

Security Intelligence

Legacy D-Link routers exploited via unauthenticated DNS hijacking

A critical vulnerability (CVE-2026-0625) in legacy D-Link DSL routers enables unauthenticated remote code execution....

Security Intelligence

Maximum‑severity flaw enables SmarterMail server takeover

A critical SmarterMail vulnerability puts unpatched, internet-facing mail servers at risk. See mitigation steps and...

Security Intelligence

MongoDB Vulnerability Exposes Server Memory to Unauthenticated Attacks

A vulnerability in MongoDB Server, tracked as CVE‑2025‑14847, involves improper handling of mismatched length fields in...

Security Intelligence

Critical Flaw in n8n Exposes Workflow Automation Environments

CVE‑2025‑68613 is a critical vulnerability in the platform’s workflow expression evaluation system. It could enable...

Security Intelligence

Critical RCE in HPE OneView Exposes Infrastructure Control Plane

HPE OneView is impacted by a maximum severity vulnerability that enables unauthenticated remote code execution via REST...

Security Intelligence

WatchGuard reports active exploitation of critical Firebox RCE flaw

WatchGuard confirms active exploitation of a critical Fireware OS vulnerability (CVE-2025-14733) affecting Firebox...

Security Intelligence

Unpatched Cisco AsyncOS Vulnerability Actively Exploited

Cisco warns of active exploitation of critical AsyncOS flaw (CVE-2025-20393) enabling unauthenticated root-level RCE on...

Security Intelligence

Exploited flaw in end-of-support SonicWall SMA 100 receives hotfix

SonicWall confirmed active exploitation of CVE-2025-40602 affecting SMA appliances. Apply hotfixes and restrict public...