News & Alerts
Get the latest cybersecurity news, threat alerts, and expert analysis in one place. Stay ahead of emerging risks with timely, actionable insights.
MostereRAT Phishing Campaign Uses Advanced Evasion to Deliver Stealthy Remote Access Malware
The attack leverages obscure programming languages, mTLS-secured C2, and Windows privilege abuse to achieve persistence and evade detection.
Docker API Exploits Evolve Into Botnet-Building Malware With Persistent Access
Attackers are shifting from cryptomining to building a multi-vector botnet that can replicate, persist, and prepare for broader attacks.
Microsoft September Patch Tuesday Fixes 81 Flaws, Including Two Zero-Days
The update addresses nine critical bugs and two publicly disclosed vulnerabilities in Windows SMB and SQL Server.
Adobe Issues Emergency Patch for ‘SessionReaper,’ One of the Most Severe Magento Flaws Ever
The critical bug could let attackers hijack customer accounts without authentication through Adobe Commerce and Magento REST APIs.
SAP Patches 21 Vulnerabilities, Including Three Critical Flaws in NetWeaver
The September fixes include a maximum-severity bug that could let attackers execute arbitrary commands via exposed SAP NetWeaver components.
Plex Urges Password Resets After Latest Data Breach Exposes User Credentials
The streaming service confirmed attackers accessed usernames, emails, and hashed passwords, marking the second major breach in three years.
Massive Scans Target Cisco ASA Devices, Raising Fears of Imminent Exploit
A surge in reconnaissance activity against Cisco ASA devices may foreshadow the disclosure of a new vulnerability, researchers warn.
GhostAction Supply Chain Attack Leaks 3,325 Secrets from GitHub Projects
The attack exploited compromised maintainer accounts to silently inject malicious GitHub Actions workflows into hundreds of repositories.
