Cloudflare Blocks Aisuru Botnet Powered Largest Ever 29.7 Tbps DDoS Attack
The Internet faced an aggressive surge in cyberattacks during the third quarter of 2025, according to a comprehensive DDoS threat report from Cloudflare, a web…
Latest Cybersecurity News — Page 1130
View all →
Critical vulnerabilities found in React and Next.js
Security researchers on Wednesday warned about a critical vulnerability in React Server Components (RCS) and Next.js. The vulnerability, tracked as CVE-2025-55182, enables unauthenticated remote-code execution,…
How strong password policies secure OT systems against cyber threats
Operational technology (OT) interacts with crucial real-world infrastructure, empowering everything from energy plants to manufacturing facilities. Such environments are obvious targets for cyberattacks, but OT…
CISA Warns of OpenPLC ScadaBR File Upload Vulnerability Exploited in Attacks
Critical vulnerability has been added to CISA’s Known Exploited Vulnerabilities list, warning organizations about a dangerous file-upload flaw in OpenPLC ScadaBR systems. The vulnerability allows…
Hackers Weaponize Velociraptor DFIR for Stealthy C2 and Ransomware Deployment
Threat actors are increasingly weaponizing Velociraptor, a legitimate open-source digital forensics and incident response (DFIR) tool, to establish command-and-control (C2) infrastructure and facilitate ransomware attacks.…
Lawmakers question White House on strategy for countering AI-fueled hacks
Listen to the article 3 min This audio is auto-generated. Please let us know if you have feedback. A pair of U.S. senators wants to…
Critical React, Next.js flaw lets hackers execute code on servers
A maximum severity vulnerability, dubbed ‘React2Shell’, in the React Server Components (RSC) ‘Flight’ protocol allows remote code execution without authentication in React and Next.js applications. The security issue…
New Phishing Attack Mimic as Income Tax Department of India Delivers AsyncRAT
A comprehensive phishing operation began targeting Indian companies in November 2025 by impersonating the Income Tax Department of India. The campaign employed remarkably authentic government…
Akamai Fixes HTTP Request Smuggling Flaw in Edge Servers
Akamai has fixed a vulnerability in its edge servers that could have allowed HTTP Request Smuggling attacks. The issue was entirely resolved on November 17,…
Cybersecurity in Agentic Commerce: Safeguarding the Autonomous Future
04 Dec Cybersecurity in Agentic Commerce: Safeguarding the Autonomous Future Posted at 09:43h in Blogs by Taylor Fox Building a Secure Foundation for the Future…
Malicious Rust packages targeted Web3 developers
A malicious Rust crate (package) named evm-units, aimed at stealing cryptocurrency from unsuspecting developers, has been pulled from the official public package registry for the…
Canadian police trialing facial recognition bodycams
A municipal police force in Canada is now using facial recognition bodycams, it was revealed this week. The police service in the prairie city of…