Internet Security

Attackers exploit critical Flowise flaw CVE-2025-59528 for remote code execution

April 7, 2026 add comment
Attackers are exploiting a critical Flowise flaw, tracked as CVE-2025-59528 (CVSS score of 10), that lets them run malicious code and access systems due to poor validation of user-supplied JavaScript. Attackers... Read more »

Major outage cripples Russian banking apps and metro payments nationwide

April 7, 2026 add comment
A major outage hit Russian banking apps and payments, blocking card use, cash withdrawals, and mobile access for hours. A widespread outage disrupted banking apps and payment systems across... Read more »

Fast-moving Storm-1175 uses new exploits to breach networks and drop Medusa

April 7, 2026 add comment
China-based actor Storm-1175 runs fast ransomware attacks, exploiting new flaws to breach systems and quickly deploy Medusa ransomware. China-based actor Storm-1175 carries out fast, financially driven ransomware attacks by... Read more »

GPUBreach exploit uses GPU memory bit-flips to achieve full system takeover

April 7, 2026 add comment
GPUBreach attack technique uses GPU memory bit-flips to escalate privileges and potentially take full control of a system. New research shows that attacks like GPUBreach exploit RowHammer bit-flips in... Read more »

U.S. CISA adds a flaw in Fortinet FortiClient EMS to its Known Exploited Vulnerabilities catalog

April 7, 2026 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Fortinet FortiClient EMS to its Known Exploited Vulnerabilities catalog The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a... Read more »

Experts published unpatched Windows zero-day BlueHammer

April 7, 2026 add comment
A researcher leaked the unpatched Windows zero-day “BlueHammer,” letting attackers gain SYSTEM rights; no patch exists yet. A disgruntled researcher released the BlueHammer Windows zero-day, a privilege escalation flaw... Read more »

Phishing LNK files and GitHub C2 power new DPRK cyber attacks

April 6, 2026 add comment
DPRK-linked hackers use GitHub C2s, starting attacks via phishing LNK files that drop a PDF and PowerShell script in South Korea. North Korea-linked threat actors target South Korean organizations... Read more »

BKA unmasks two REvil Ransomware operators behind 130+ German attacks

April 6, 2026 add comment
German police BKA identified two key REvil ransomware members, linking them to over 130 attacks in Germany. Germany’s Federal Criminal Police (BKA) has identified two key figures behind the... Read more »

Attackers Exploit RCE Flaw as 14,000 F5 BIG-IP APM Instances Remain Exposed

April 6, 2026 add comment
Over 14,000 F5 BIG-IP APM instances remain exposed online, as attackers actively exploit a critical remote code execution flaw CVE-2025-53521. Over 14,000 F5 BIG-IP APM instances remain exposed online,... Read more »

CVE-2026-35616: Fortinet fixes actively exploited high-severity flaw

April 6, 2026 add comment
Fortinet issued emergency patches for a critical FortiClient EMS flaw (CVE-2026-35616) actively exploited in the wild. Fortinet released out-of-band patches for a critical FortiClient EMS vulnerability, tracked as CVE-2026-35616... Read more »
Subscribe to our Newsletter