SecuX releases Bitcoin self-managed solution for SMBs
SecuX launched hardware-based cybersecurity solution tailored for small and medium-sized businesses (SMBs). At the core is Cyber Athena, an enterprise-grade cold wallet that integrates PUF-based…
Month: May 2025
Microsoft Defender Vulnerability Allows Attackers to Elevate Privileges
A newly disclosed security flaw in Microsoft Defender for Endpoint could allow attackers with local access to elevate their privileges to SYSTEM level, potentially gaining…
Researchers Unveil New Threat-Hunting Techniques to Detect Azure Managed Identity Abuse
A group of cybersecurity specialists from Hunters, working under the prestigious Team Axon, have presented sophisticated threat-hunting techniques in a ground-breaking research paper titled “Mastering…
Nobara Linux 42 brings performance boost and better hardware support
The Nobara Project has released a new version of its Linux distribution, bringing updated packages, performance improvements, and a few visual tweaks aimed at making…
Microsoft Fixes 78 Flaws, 5 Zero-Days Exploited; CVSS 10 Bug Impacts Azure DevOps Server
Microsoft on Tuesday shipped fixes to address a total of 78 security flaws across its software lineup, including a set of five zero-days that have…
Fortinet fixed actively exploited FortiVoice zero-day
Fortinet fixed actively exploited FortiVoice zero-day Pierluigi Paganini May 14, 2025 Fortinet fixed a critical remote code execution zero-day vulnerability actively exploited in attacks targeting…
a first step to a more centralized approach
We’re pleased to share a significant new change to our platform for companies. Our goal is to empower our customers with clear, actionable insights into…
What’s new in Burp Suite Professional: A year of innovation | Blog
Eleanor Clarke | 14 May 2025 at 08:26 UTC Over the past year, we’ve been hard at work making Burp Suite Professional faster, smarter, and…
Microsoft Warns of AD CS Vulnerability Let Attacker Deny Service Over a Network
Microsoft has issued a security advisory regarding a new vulnerability in Active Directory Certificate Services (AD CS) that could allow attackers to perform denial-of-service attacks…
Windows Ancillary for WinSock 0-Day Vulnerability Actively Exploited to Gain Admin Access.
Microsoft has confirmed active exploitation of a critical privilege escalation vulnerability in the Windows Ancillary Function Driver for WinSock, tracked as CVE-2025-32709. This use-after-free flaw…
Resilience helps businesses understand their cyber risk in financial terms
Resilience launched Cyber Risk Calculator to provide organizations with a financial snapshot of their cyber risk. The AI-powered tool provides security and risk practitioners and C-Suite…
82,000+ WordPress Sites Exposed to Remote Code Execution Attacks
Critical vulnerabilities were identified in TheGem, a premium WordPress theme with more than 82,000 installations worldwide. Researchers identified two separate but interconnected vulnerabilities in TheGem…