Category: CyberSecurityNews

Citrix Windows Virtual Delivery Agent Vulnerability Let Attackers Gain SYSTEM Privileges
09
Jul
2025

Citrix Windows Virtual Delivery Agent Vulnerability Let Attackers Gain SYSTEM Privileges

A critical security vulnerability has been discovered in Citrix Windows Virtual Delivery Agent that allows local attackers to escalate privileges…

Multiple Apache Tomcat Vulnerabilities Let Attackers Trigger DoS Attacks
09
Jul
2025

Multiple Apache Tomcat Vulnerabilities Let Attackers Trigger DoS Attacks

Apache Tomcat has addressed three critical denial-of-service (DoS) vulnerabilities that could allow malicious actors to disrupt web applications and services. …

Microsoft SQL Server 0-Day Vulnerability Exposes Sensitive Data Over Network
09
Jul
2025

Microsoft SQL Server 0-Day Vulnerability Exposes Sensitive Data Over Network

A critical information disclosure vulnerability in Microsoft SQL Server, designated as CVE-2025-49719, allows unauthorized attackers to access sensitive data over…

Microsoft Remote Desktop Client Vulnerability Let Attackers Execute Remote Code
09
Jul
2025

Microsoft Remote Desktop Client Vulnerability Let Attackers Execute Remote Code

A critical security vulnerability in Microsoft Remote Desktop Client could allow attackers to execute arbitrary code on victim systems.  The…

CISA Warns of Rails Ruby on Rails Path Traversal Vulnerability Exploited in Attacks
09
Jul
2025

CISA Warns of Rails Ruby on Rails Path Traversal Vulnerability Exploited in Attacks

CISA has issued a critical warning regarding a path traversal vulnerability in the Ruby on Rails framework that poses significant…

DNN Vulnerability Let Attackers Steal NTLM Credentials via Unicode Normalization Bypass
09
Jul
2025

DNN Vulnerability Let Attackers Steal NTLM Credentials via Unicode Normalization Bypass

A critical vulnerability in DNN (formerly DotNetNuke) that allows attackers to steal NTLM credentials through a sophisticated Unicode normalization bypass…

How To Defend Against These Phishing Kit Attacks 
08
Jul
2025

How To Defend Against These Phishing Kit Attacks 

Phishing kits are evolving fast. Threat actors behind toolkits like Tycoon2FA, EvilProxy, and Sneaky2FA are getting smarter, setting up infrastructure…

MediaTek July 2025 Security Update Patches Vulnerabilities Affecting a Wide Range of Their Chipsets
08
Jul
2025

MediaTek July 2025 Security Update Patches Vulnerabilities Affecting a Wide Range of Their Chipsets

MediaTek has released a comprehensive security bulletin addressing 16 critical vulnerabilities across its extensive chipset portfolio, affecting devices from smartphones…

Nippon Steel Solutions 0-Day Network Vulnerability Exposes Users' Personal Information
08
Jul
2025

Nippon Steel Solutions 0-Day Network Vulnerability Exposes Users’ Personal Information

Nippon Steel Solutions has disclosed a significant data breach affecting customer, partner, and employee personal information following a zero-day cyber…

Microsoft Releases Cumulative Update for Windows 10 With July Patch Tuesday 2025
08
Jul
2025

Microsoft Releases Cumulative Update for Windows 10 With July Patch Tuesday 2025

Microsoft rolled out its latest cumulative update for Windows 10, version 21H2 and 22H2, as well as Windows 10 Enterprise…

Zoom Clients for Windows Vulnerability Exposes Users to DoS Attacks
08
Jul
2025

Zoom Clients for Windows Vulnerability Exposes Users to DoS Attacks

Recently, two vulnerabilities have been discovered in specific Zoom Clients for Windows, which could enable attackers to launch Denial of…

Ivanti Endpoint Manager Mobile Vulnerabilities Allow Attackers to Decrypt Other Users’ Passwords
08
Jul
2025

Ivanti Endpoint Manager Mobile Vulnerabilities Allow Attackers to Decrypt Other Users’ Passwords

Ivanti has identified and resolved three high-severity vulnerabilities in its Endpoint Manager (EPM) software. If exploited, these flaws could enable…