A proof-of-concept (PoC) exploit tool for CVE-2025-64446 has been publicly released on GitHub. This vulnerability, affecting FortiWeb devices from Fortinet,…
A critical vulnerability in Fortinet's FortiWeb Web Application Firewall (WAF) is being actively exploited by threat actors, potentially as a…
ANY.RUN experts recently uncovered a new XWorm campaign that uses steganography to conceal malicious payloads inside seemingly harmless PNG images. What appears to…
Microsoft has launched a new security feature in Teams Premium called "Prevent screen capture," designed to block screenshots and recordings…
A new ClickFix campaign is tricking users with a fake Windows update that runs in their browser. Called "Fake OS…
Businesses today are dealing with faster, stealthier email threats that look routine yet unleash aggressively malicious scripts the moment a…
Cloud Software Group has disclosed a cross-site scripting (XSS) vulnerability affecting NetScaler ADC and NetScaler Gateway products. Tracked as CVE-2025-12101,…
Cybersecurity leaders now face an impossible equation: you need intelligence that's comprehensive enough to protect your organisation, fresh enough to stop emerging threats,…
An advanced hacking group is actively exploiting zero-day vulnerabilities in Cisco Identity Services Engine (ISE) and Citrix systems. These attacks,…
A Server-Side Request Forgery (SSRF) vulnerability in OpenAI's ChatGPT. The flaw, lurking in the Custom GPT "Actions" feature, allowed attackers…