Month: September 2025

Recent investigations have uncovered that numerous mobile applications are inadvertently exposing sensitive user data due to misconfigured Google Firebase services. These misconfigurations allow unauthorized access […]

A significant security flaw has been identified in NVIDIA’s Merlin Transformers4Rec library, designated as CVE-2025-23298. This vulnerability allows unauthenticated attackers to execute arbitrary code remotely […]

Volvo Group North America has recently informed its employees and associates about a data breach that resulted in the exposure of personal information, including names […]

A significant security flaw has been identified in Cisco’s IOS and IOS XE software, potentially enabling unauthenticated remote attackers to circumvent authentication mechanisms and access […]

In recent developments, cybersecurity experts have identified a sophisticated campaign orchestrated by the ColdRiver Advanced Persistent Threat (APT) group. This campaign leverages the deceptive ClickFix […]

In mid-2025, cybersecurity experts identified a sophisticated backdoor malware named BRICKSTORM, which has been targeting organizations within the technology and legal industries. This malware exploits […]

SetupHijack is an open-source research utility designed to exploit vulnerabilities in Windows installer and update mechanisms, specifically targeting race conditions and insecure file handling. This […]

A significant security flaw has been identified in ZendTo, a widely used web-based file transfer application. This vulnerability, designated as CVE-2025-34508, allows authenticated users to […]

In September 2025, the notorious LockBit ransomware group unveiled its latest iteration, LockBit 5.0, marking a significant evolution in its cyberattack capabilities. This release underscores […]