CISA Adds Fortinet Vulnerability to KEV Catalog After Active Exploitation
CISA has officially added CVE-2025-59718 to its Known Exploited Vulnerabilities (KEV) catalog on December 16, 2025. Designating a critical deadline of December 23, 2025, for…
Latest Cybersecurity News — Page 747
View all →
NVIDIA Isaac Lab Flaw Enables Remote Code Execution
NVIDIA has disclosed a critical security vulnerability in Isaac Lab, a component of the NVIDIA Isaac Sim framework, that could allow attackers to execute arbitrary…
Russian state hackers targeted Western critical infrastructure for years, Amazon says
Russian state hackers targeted Western critical infrastructure for years, Amazon says Pierluigi Paganini December 17, 2025 Amazon disclosed a years-long Russian state-backed cyber campaign targeting…
CISA Warns of Gladinet CentreStack and Triofox Vulnerability Exploited in Attacks
CISA issued a critical warning regarding a hardcoded cryptographic key vulnerability affecting Gladinet CentreStack and Triofox file management solutions. The vulnerability, tracked as CVE-2025-14611, poses…
Chrome Security Update Fixes Remote Code Execution Flaws
Google has released an emergency security update for the Chrome browser, addressing two high-severity vulnerabilities that could enable remote code execution attacks. The stable channel…
Security platform consolidation in 2026: The AI imperative
By Published: 17 Dec 2025 AI leaves us no other choice but to consolidate cyber security platforms; in 2026, organisations will face AI-driven attacks that…
New ClickFix ‘Word Online’ Message Tricks Users into Installing DarkGate Malware
A sophisticated social engineering campaign dubbed “ClickFix” has emerged, targeting users with deceptive “Word Online” error messages to distribute the formidable DarkGate malware. Unlike traditional…
Microsoft Will Finally Kill an Encryption Cipher That Enabled a Decade of Windows Hacks
Microsoft is killing off an obsolete and vulnerable encryption cipher that Windows has supported by default for 26 years. This follows more than a decade…
Blind Eagle Hackers Exploit Trust to Bypass Email Security Controls
BlindEagle threat actors are exploiting compromised internal email accounts to launch spear-phishing campaigns that bypass traditional email security controls, targeting Colombian government agencies with sophisticated…
IT Sustainability Think Tank: What enterprises must do to make sustainability work in 2026
As 2025 draws to a close, sustainability has shifted from the periphery of corporate strategy to the centre of operational design. For technology leaders, this…
Cellik Android Malware with One-Click APK Builder Let Attackers Wrap its Payload Inside with Google Play Store Apps
Cellik represents a significant evolution in Android Remote Access Trojan capabilities, introducing sophisticated device control and surveillance features previously reserved for advanced spyware. This newly…
CISA Alerts on Actively Exploited Gladinet CentreStack and Triofox Flaws
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a new alert regarding a critical security vulnerability affecting Gladinet CentreStack and Triofox. The agency has…