Researchers have uncovered a serious blind spot in the Microsoft 365 ecosystem: attackers can weaponize Outlook add-ins to exfiltrate sensitive email data without leaving forensic […]
Security researchers at JFrog have disclosed two critical flaws in the n8n workflow automation platform, both enabling authenticated remote code execution (RCE). These vulnerabilities pose […]
Microsoft has announced a major security change: the deprecation of SMTP AUTH Basic Authentication in Exchange Online by December 2026. This move addresses one of […]
A prolific initial access broker (IAB) tracked as TA584 has adopted the Tsundere Bot malware alongside XWorm RAT to gain footholds in enterprise networks, setting […]
F5 publishes Quarterly Security Notifications (QSNs) to disclose vulnerabilities and exposures across its product portfolio. These scheduled advisories allow customers to plan patching and updates […]
Google’s Threat Intelligence Group (GTIG) has issued a warning that multiple threat actors, including nation-state groups and financially motivated cybercriminals, are actively exploiting CVE-2025-8088, a […]
The Chinese espionage group Mustang Panda has rolled out a new variant of its CoolClient backdoor, expanding its capabilities to include browser credential theft, clipboard […]
A critical remote code execution (RCE) vulnerability in SmarterTools SmarterMail is being actively exploited, with over 6,000 servers exposed online. This flaw poses a severe […]
Microsoft has issued an emergency out-of-band patch for a high-severity zero-day vulnerability in Microsoft Office that is actively being exploited in the wild. Vulnerability Details […]
A high-severity vulnerability has been disclosed in Western Digital’s WD Discovery desktop app for Windows, tracked as CVE-2025-30248, which could allow attackers to execute arbitrary […]
Copyright © 2026 | WordPress Theme by MH Themes