NVIDIA Isaac Lab Flaw Enables Remote Code Execution
NVIDIA has disclosed a critical security vulnerability in Isaac Lab, a component of the NVIDIA Isaac Sim framework, that could allow attackers to execute arbitrary…
Month: December 2025
Russian state hackers targeted Western critical infrastructure for years, Amazon says
Russian state hackers targeted Western critical infrastructure for years, Amazon says Pierluigi Paganini December 17, 2025 Amazon disclosed a years-long Russian state-backed cyber campaign targeting…
CISA Warns of Gladinet CentreStack and Triofox Vulnerability Exploited in Attacks
CISA issued a critical warning regarding a hardcoded cryptographic key vulnerability affecting Gladinet CentreStack and Triofox file management solutions. The vulnerability, tracked as CVE-2025-14611, poses…
Chrome Security Update Fixes Remote Code Execution Flaws
Google has released an emergency security update for the Chrome browser, addressing two high-severity vulnerabilities that could enable remote code execution attacks. The stable channel…
Security platform consolidation in 2026: The AI imperative
By Published: 17 Dec 2025 AI leaves us no other choice but to consolidate cyber security platforms; in 2026, organisations will face AI-driven attacks that…
New ClickFix ‘Word Online’ Message Tricks Users into Installing DarkGate Malware
A sophisticated social engineering campaign dubbed “ClickFix” has emerged, targeting users with deceptive “Word Online” error messages to distribute the formidable DarkGate malware. Unlike traditional…
Microsoft Will Finally Kill an Encryption Cipher That Enabled a Decade of Windows Hacks
Microsoft is killing off an obsolete and vulnerable encryption cipher that Windows has supported by default for 26 years. This follows more than a decade…
Blind Eagle Hackers Exploit Trust to Bypass Email Security Controls
BlindEagle threat actors are exploiting compromised internal email accounts to launch spear-phishing campaigns that bypass traditional email security controls, targeting Colombian government agencies with sophisticated…
IT Sustainability Think Tank: What enterprises must do to make sustainability work in 2026
As 2025 draws to a close, sustainability has shifted from the periphery of corporate strategy to the centre of operational design. For technology leaders, this…
Cellik Android Malware with One-Click APK Builder Let Attackers Wrap its Payload Inside with Google Play Store Apps
Cellik represents a significant evolution in Android Remote Access Trojan capabilities, introducing sophisticated device control and surveillance features previously reserved for advanced spyware. This newly…
CISA Alerts on Actively Exploited Gladinet CentreStack and Triofox Flaws
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a new alert regarding a critical security vulnerability affecting Gladinet CentreStack and Triofox. The agency has…
XM Cyber bridges external attack surface management with validated internal attack paths
XM Cyber announced an update to its platform that connects External Attack Surface Management with internal risk validation, closing the gap between what’s exposed outside…