Before bounties: know your assets
If you are unaware of what’s running in your environment, you can’t patch, monitor, or secure it. The simple fact is, you can’t defend what…
Latest Cybersecurity News — Page 1594
View all →Ukrainian Web3team Weaponizing NPM Package to Attack Job Seekers and Steal Sensitive Data
A sophisticated cybercriminal operation disguised as a Ukrainian Web3 development team has been targeting job seekers through weaponized NPM packages, security researchers warn. The attack…
Microsoft Teams RCE Flaw Allows Hackers to Read, Modify, and Delete Messages
Microsoft has disclosed a critical remote code execution vulnerability in Microsoft Teams that could allow attackers to execute malicious code and potentially access, modify, or…
Microsoft August 2025 Patch Tuesday Fixes Kerberos Zero-Day Among 111 Total New Flaws
Microsoft on Tuesday rolled out fixes for a massive set of 111 security flaws across its software portfolio, including one flaw that has been disclosed…
New Windows 0-Click NTLM Credential Leakage Vulnerability Bypasses Microsoft’s Patch
A critical zero-click NTLM credential leakage vulnerability that circumvents Microsoft’s recent patch for CVE-2025-24054. The newly identified flaw, assigned CVE-2025-50154, allows attackers to extract NTLM…
New Charon Ransomware Uses DLL Sideloading and Anti-EDR Tactics in Targeted Attacks
Trend Micro researchers have uncovered a novel ransomware family dubbed Charon, deployed in a sophisticated campaign targeting the public sector and aviation industry in the…
ODI tells EU to balance AI safeguards with innovation promotion
The Open Data Institute (ODI) has published a manifesto that spells out six principles for the European Union (EU) to follow in shaping its policies…
Adobe Security Update Fixes 60+ Flaws In 13 Products
Adobe has issued a new set of security patches addressing more than 60 vulnerabilities across 13 of its widely used software products. This update, part…
Critical FortiSIEM Vulnerability Allows Attackers to Execute Malicious Commands, PoC Found in the Wild
Security researchers have discovered a critical vulnerability in Fortinet’s FortiSIEM platform that enables remote attackers to execute unauthorized commands without authentication. The flaw, tracked as…
Hackers leak 2.8M sensitive records from Allianz Life in Salesforce data breach
Hackers leak 2.8M sensitive records from Allianz Life in Salesforce data breach Pierluigi Paganini August 13, 2025 Hackers leaked 2.8M sensitive records from Allianz Life,…
Malicious npm Package Lures Job Seekers and Exfiltrates Sensitive Data
A self-proclaimed Ukrainian Web3 team targeted a community member during an interview’s first round by instructing them to clone and run a GitHub repository named…
Multiple Chrome High-Severity Vulnerabilities Let Attackers Execute Arbitrary Code
Google Chrome has released a critical security update addressing six vulnerabilities that could potentially enable arbitrary code execution on affected systems. The stable channel update…