FreePBX patched 2025 flaws allowing SQL injection, file upload attacks, and an auth bypass only when webserver AUTHTYPE was ...
Researchers report phishing emails in Russia using ISO attachments to deploy Phantom Stealer against finance and related ...
VolkLocker uses AES-256 in Galois/Counter Mode ( GCM) for encryption through Golang's "crypto/rand" package. Every encrypted ...
CISA warns of active exploitation of Sierra Wireless router flaw allowing remote code execution via unrestricted file upload.
Researchers detail new AI and phishing kits that steal credentials, bypass MFA, and scale attacks across major services.
Apple fixes two exploited WebKit bugs targeting specific users, issuing security updates across iOS, macOS, and Safari.
PyStoreRAT spreads via fake GitHub tools using small Python or JavaScript loaders to fetch HTA files and install a modular ...
Enterprises rely on browser-based GenAI, increasing data-exposure risks and demanding strict policies, isolation, and ...
CISA reports active exploitation of GeoServer XXE flaw CVE-2025-58360 and directs immediate updates to secure affected ...
Research shows a .NET proxy design flaw enables file writes and RCE through attacker-supplied WSDL in multiple products.
Huntress reports active attacks abusing Gladinet’s fixed cryptographic keys to forge tickets and gain remote code execution ...
Written in C++, NANOREMOTE is equipped to perform reconnaissance, execute files and commands, and transfer files to and from ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback