Vulnerability

2 minute read

Darcula Phishing Kit Uses AI to Evade Detection, Experts Warn

Darcula phishing platform adds AI to create multilingual scam pages easily. Netcraft warns of rising risks from Darcula-Suite…

byDeeba Ahmed

April 28, 2025

Planet Technology Industrial Switch Flaws Risk Full Takeover - Patch Now

2 minute read

Security

Planet Technology Industrial Switch Flaws Risk Full Takeover – Patch Now

Immersive security researchers discovered critical vulnerabilities in Planet Technology network management and switch products, allowing full device control.…

byDeeba Ahmed

April 26, 2025

SAP NetWeaver Flaw Scores 10.0 Severity as Hackers Deploy Web Shells

3 minute read

Security

SAP NetWeaver Flaw Scores 10.0 Severity as Hackers Deploy Web Shells

A critical vulnerability (CVE-2025-31324) in SAP NetWeaver Visual Composer puts systems at risk of full compromise. Learn how…

byDeeba Ahmed

April 26, 2025

Critical Commvault Flaw Allows Full System Takeover - Update NOW

3 minute read

Security

Critical Commvault Flaw Allows Full System Takeover – Update NOW

Enterprises using Commvault Innovation Release are urged to patch immediately against CVE-2025-34028. This critical flaw allows attackers to…

byDeeba Ahmed

April 25, 2025

2 minute read

Elusive Comet Attack: Hackers Use Zoom Remote-Control to Steal Crypto

Hackers in the Elusive Comet campaign exploit Zoom’s remote-control feature to steal cryptocurrency, and over $100K lost in…

byDeeba Ahmed

April 24, 2025

SSL.com Vulnerability Allowed Fraudulent SSL Certificates for Major Domains

2 minute read

Security

SSL.com Vulnerability Allowed Fraudulent SSL Certificates for Major Domains

An SSL.com vulnerability allowed attackers to issue valid SSL certificates for major domains by exploiting a bug in…

byDeeba Ahmed

April 22, 2025

2 minute read

North Korea, Iran, Russia-Backed Hackers Deploy ClickFix in New Attacks

Government-backed hacking groups from North Korea (TA427), Iran (TA450), and Russia (UNK_RemoteRogue, TA422) are now using the ClickFix…

byDeeba Ahmed

April 21, 2025

CISA Urges Action on Potential Oracle Cloud Credential Compromise

2 minute read

Security

CISA Urges Action on Potential Oracle Cloud Credential Compromise

Following reports of unauthorized access to a legacy Oracle cloud environment, CISA warns of potential credential compromise leading…

byDeeba Ahmed

April 17, 2025

Researchers Find CVSS 10.0 Severity RCE Vulnerability in Erlang/OTP SSH

3 minute read

Security

Researchers Find CVSS 10.0 Severity RCE Vulnerability in Erlang/OTP SSH

Security researchers report CVE-2025-32433, a CVSS 10.0 RCE vulnerability in Erlang/OTP SSH, allowing unauthenticated code execution on exposed…

byWaqas

April 17, 2025

2 minute read

Mass Ransomware Campaign Hits S3 Buckets Using Stolen AWS Keys

Researchers reveal a large-scale ransomware campaign leveraging over 1,200 stolen AWS access keys to encrypt S3 buckets. Learn…

byDeeba Ahmed

April 17, 2025

The Latest

Court Dismisses Criminal Charges Against VPN Executive, Affirms No-Log Policy

Darcula Phishing Kit Uses AI to Evade Detection, Experts Warn

JokerOTP Dismantled After 28,000 Phishing Attacks, 2 Arrested

Planet Technology Industrial Switch Flaws Risk Full Takeover – Patch Now

Vulnerability

Darcula Phishing Kit Uses AI to Evade Detection, Experts Warn

Planet Technology Industrial Switch Flaws Risk Full Takeover – Patch Now

SAP NetWeaver Flaw Scores 10.0 Severity as Hackers Deploy Web Shells

Critical Commvault Flaw Allows Full System Takeover – Update NOW

Elusive Comet Attack: Hackers Use Zoom Remote-Control to Steal Crypto

SSL.com Vulnerability Allowed Fraudulent SSL Certificates for Major Domains

North Korea, Iran, Russia-Backed Hackers Deploy ClickFix in New Attacks

CISA Urges Action on Potential Oracle Cloud Credential Compromise

Researchers Find CVSS 10.0 Severity RCE Vulnerability in Erlang/OTP SSH

Court Dismisses Criminal Charges Against VPN Executive, Affirms No-Log Policy

dRPC Launches NodeHaus to Streamline Blockchain and Web3 Infrastructure

Lattica Emerges from Stealth to Solve AI’s Biggest Privacy Challenge with FHE

Criminal IP to Showcase Advanced Threat Intelligence at RSAC™ 2025

Industry First: StrikeReady AI Platform Moves Security Teams Beyond Basic, One-Dimensional AI-Driven Triage Solutions