Author: PulauWin

CISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE Attacks

December 15, 2025 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a high-severity flaw impacting Sierra Wireless AirLink ALEOS routers to its Known Exploited Vulnerabilities (KEV) catalog, following reports... Read more »

Webinar: How Attackers Exploit Cloud Misconfigurations Across AWS, AI Models, and Kubernetes

December 15, 2025 add comment
Cloud security is changing. Attackers are no longer just breaking down the door; they are finding unlocked windows in your configurations, your identities, and your code. Standard security tools... Read more »
The Hacker News

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

December 14, 2025 add comment
The React team has released fixes for two new types of flaws in React Server Components (RSC) that, if successfully exploited, could result in denial-of-service (DoS) or source code... Read more »
Internet Security

Security Affairs newsletter Round 554 by Pierluigi Paganini – INTERNATIONAL EDITION

December 14, 2025 add comment
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new... Read more »
Internet Security

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 75

December 14, 2025 add comment
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter UDPGangster Campaigns Target Multiple Countries Ransomware Trends in... Read more »

Storm-0249 Escalates Ransomware Attacks with ClickFix, Fileless PowerShell, and DLL Sideloading

December 14, 2025 add comment
The threat actor known as Storm-0249 is likely shifting from its role as an initial access broker to adopt a combination of more advanced tactics like domain spoofing, DLL... Read more »
Internet Security

Experts found an unsecured 16TB database containing 4.3B professional records

December 14, 2025 add comment
An open 16TB database exposed 4.3B professional records. It was unsecured and only closed after researchers alerted the owner. A 16TB unsecured MongoDB database exposed about 4.3 billion professional... Read more »
Help Net Security

Week in review: 40 open-source tools securing the stack, invisible IT to be the next workplace priority

December 14, 2025 add comment
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: 40 open-source tools redefining how security teams secure the stack Open source security software... Read more »

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

December 13, 2025 add comment
This week’s cyber stories show how fast the online world can turn risky. Hackers are sneaking malware into movie downloads, browser add-ons, and even software updates people trust. Tech... Read more »
Internet Security

Germany calls in Russian Ambassador over air traffic control hack claims

December 13, 2025 add comment
Germany summoned Russia’s ambassador over alleged cyberattacks on air traffic control and a disinformation campaign ahead of national elections. Germany summoned Russia’s ambassador after accusing Moscow of cyber attacks... Read more »
Subscribe to our Newsletter