ASUS warns of critical auth bypass flaw in DSL series routers
ASUS has released new firmware to patch a critical authentication bypass security flaw impacting several DSL series router models. Tracked as CVE-2025-59367, this vulnerability allows…
Author: Cybernoz
Washington Post Oracle E-Suite Hack Impacts 9K+ Employees and Contractors
The Washington Post has publicly disclosed a significant data breach involving external hacking of its Oracle E-Suite system, impacting over 9,700 employees and contractors worldwide.…
Android Photo Frame App Infects Devices With Malware, Allows Full Remote Takeover
A recent investigation has uncovered alarming security vulnerabilities in Android-powered digital photo frames, turning what should be a simple home or office gadget into a…
Washington Post notifies 10,000 individuals affected in Oracle-linked data theft
Washington Post notifies 10,000 individuals affected in Oracle-linked data theft Pierluigi Paganini November 14, 2025 The Washington Post alerts nearly 10,000 employees and contractors that…
Critical Imunify360 AV Vulnerability Exposes 56 Million Linux-hosted Websites to Remote Code Execution Attacks
A severe remote code execution (RCE) vulnerability has been discovered in Imunify360 AV, a widely used malware scanner protecting approximately 56 million websites. The security…
Critical Zoho Analytics Plus Flaw Allows Attackers to Run Arbitrary SQL Queries
A critical unauthenticated SQL injection vulnerability has been discovered in Zoho Analytics Plus on-premise, posing a severe risk to organizations running affected versions. Tracked as…
Fortinet FortiWeb Flaw Actively Exploited in the Wild Before Company’s Silent Patch
Nov 14, 2025Ravie LakshmananThreat Intelligence / Vulnerability Cybersecurity researchers are sounding the alert about an authentication bypass vulnerability in Fortinet Fortiweb WAF that could allow…
Android Rust Shift Enabes Faster, Safer Development
Android has shared new insights into how the platform’s long-term shift toward Rust is reshaping both security and software development. The new data reflects a…
Kraken Cross-Platform Ransomware Attacking Windows, Linux, and VMware ESXi Systems in Enterprise Environments
In August 2025, a new ransomware threat emerged with capabilities that fundamentally changed how organizations should approach enterprise security. Kraken, a Russian-speaking cybercriminal group, began…
Washington Post Oracle E-Suite Breach Exposes Data of Over 9,000 Staff and Contractors
The Washington Post disclosed a significant data breach affecting more than 9,700 employees and contractors following an external system compromise targeting its Oracle E-Suite infrastructure.…
Checkout.com Data Breach Exposes Old Merchant Files
Checkout.com data breach concerns have surfaced after the global payment processor confirmed it was recently targeted by the cybercrime group ShinyHunters. The company reported that…
Cl0P Ransomware Group Allegedly Claims Breach of Entrust in Oracle 0-Day EBS Hack
The notorious Cl0P ransomware group has claimed responsibility for breaching digital security firm Entrust, exploiting a critical zero-day vulnerability in Oracle E-Business Suite (EBS). The…