Month: September 2025

In a recent and sophisticated supply chain attack, cybercriminals have targeted cryptocurrency developers by introducing malicious Rust crates into the ecosystem. These fraudulent packages, named […]

Cisco has recently identified a critical security vulnerability, designated as CVE-2025-20363, affecting multiple platforms, including Adaptive Security Appliance (ASA), Firepower Threat Defense (FTD), IOS, IOS […]

Active Directory (AD) serves as the cornerstone for authentication and authorization within Windows environments. Its central database, NTDS.dit, contains critical information, including user credentials and […]

In late 2024, a sophisticated cyber espionage campaign emerged, targeting telecommunications infrastructure worldwide. The group behind these operations, identified as Salt Typhoon, is believed to […]

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an Emergency Directive in response to the active exploitation of two critical zero-day vulnerabilities—CVE-2025-20333 and CVE-2025-20362—affecting […]

In a significant cybersecurity development, researchers have identified the first-known malicious Model-Context-Prompt (MCP) server actively exploiting AI agents to exfiltrate sensitive email data. The compromised […]

A critical vulnerability in Fortra’s GoAnywhere Managed File Transfer (MFT) solution, identified as CVE-2025-10035, has been actively exploited as a zero-day at least a week […]

In September 2025, cybersecurity researchers identified a new variant of the XCSSET malware, marking a significant evolution in threats targeting macOS developers. This sophisticated malware […]

GitLab, a leading DevOps platform, has recently issued critical security updates for its Community Edition (CE) and Enterprise Edition (EE) to address multiple high-severity vulnerabilities. […]