Security Intelligence

Cisco patches critical UCCX flaws enabling unauthenticated RCE

Cisco’s latest patches fix critical RCE flaws in UCCX, allowing unauthenticated attackers to execute code and gain root...

Security Intelligence

CISA adds CVE-2025-48703 to KEV: Secure your CWP now

CISA has added CVE-2025-48703, a critical remote code execution flaw in Control Web Panel (CWP), to its Known Exploited...

Security Intelligence

SesameOp malware uses OpenAI API for covert command and control

A new report from Microsoft details a new malware campaign leveraging the OpenAI Assistants API as a covert...

Security Intelligence

Balancer cryptoheist exposes security gaps in blockchain-based financial systems

A $128M Balancer DeFi breach exposes critical flaws in cross-chain smart contracts, highlighting the security risks of...

Security Intelligence

Weekly Threat Round-up: Chrome POC Published, BIND 9 Vulnerability Reopens, & Microsoft Issues Emergency Patch

November 3, 2025 Threat Round-up: Stay ahead of emerging cyber risks with this week’s top threat intelligence...

Security Intelligence

New nation-state malware targets BPOs via AirWatch exploits

New nation-state malware Airstalk exploits AirWatch APIs to target BPOs, stealing browser data and screenshots to...

Security Intelligence

Public exploit published for unpatched vulnerability in Chrome

A vulnerability in Chromium’s Blink rendering engine causes various browsers to crash, freeze, or become unresponsive...

Security Intelligence

Two additional flaws in Dassault Systèmes DELMIA Apriso exploited

CISA added CVE-2025-6204 and CVE-2025-6205 to its KEV catalog, confirming active exploitation in the wild. Chaining the...

Security Intelligence

BIND 9 vulnerability reopens DNS poisoning threat: POC published

POC exploit code for CVE-2025-40778 published, demonstrates how a remote, unauthenticated user could poison DNS caches...

Security Intelligence

Weekly Threat Round-up: RCE risk in Rust, TP-Link patches, & CISA adds five vulnerabilities to KEV

October 27, 2025 Threat Round-up: New RCE flaw found in Rust, TP-Link issues urgent patches, CISA adds five exploited...

Security Intelligence

ASP.NET Core flaw affects QNAP NetBak PC Agent, other deployments

Critical ASP.NET Core flaw (CVE-2025-55315) impacts QNAP NetBak PC Agent and other deployments. Update to version...

Security Intelligence

Microsoft issues emergency patch for critical, actively exploited WSUS flaw

Microsoft patches a critical WSUS flaw (CVE-2025-59287) enabling remote code execution. Learn about the risks, active...