Hijacking NodeJS’ Jenkins Agents For Remote Code Execution
Security researchers recently uncovered a critical vulnerability in Node.js’s continuous integration infrastructure that allowed attackers to execute malicious code on...
Read more →Category: CyberSecurityNews
Researchers Leveraged OAuth Misconfiguration to Access Sensitive Data Without Restrictions
A security researcher identified as Remy disclosed a critical vulnerability discovered during a YesWeHack bug bounty engagement. The researcher uncovered...
Read more →
Anthropic Report Sheds Light on Emerging Threats from Generative AI Misuse
The cybersecurity landscape faces unprecedented challenges as artificial intelligence systems become increasingly weaponized by malicious actors. A groundbreaking report released...
Read more →
The CISO’s Guide to Managing Cyber Risk in Hybrid Workplaces
Hybrid work has become a permanent fixture in the modern enterprise, blending remote and in-office operations to enhance flexibility and...
Read more →
Firefox 138 Released With Fix for Multiple High-severity Vulnerabilities
Mozilla has released Firefox 138, addressing several high-severity security vulnerabilities while introducing long-awaited features, including improved profile management. Security researchers...
Read more →
Samsung MagicINFO Vulnerability Allows Remote Code Execution Without Valid User
A critical security vulnerability has been discovered in Samsung’s MagicINFO digital signage management platform that could allow attackers to execute...
Read more →
Link11 brings three brands together on one platform with new branding
Link11 has fully integrated DOSarrest and Reblaze to become one of Europe’s leading providers of network security, web application security,...
Read more →
Zimbra Collaboration Server GraphQL Vulnerability Exposes Sensitive User Data
A critical Cross-Site Request Forgery (CSRF) vulnerability in Zimbra Collaboration Server (ZCS) versions 9.0 through 10.1, tracked as CVE-2025-32354, allows...
Read more →
PowerDNS DNSdist Vulnerability Let Attackers Cause Denial of Service Condition
A high-severity vulnerability (CVE-2025-30194) in PowerDNS DNSdist, a widely used DNS load balancer and security tool, enables remote attackers to...
Read more →
WhatsApp Introduces AI Tools With Promise of Full Message Secrecy
WhatsApp, the world’s largest messaging platform, has announced a major leap in privacy-preserving artificial intelligence (AI) with the introduction of...
Read more →
Avast Antivirus Vulnerability Let Attackers Escalate Privileges
Security researchers have disclosed a critical vulnerability in Avast Free Antivirus that could allow attackers to gain elevated system privileges...
Read more →
Zero Trust Architecture – A CISO’s Blueprint for Modern Security
Zero-trust architecture has become essential for securing operations in today’s hyper-connected world, where corporate network boundaries have vanished and employees,...
Read more →