Internet Security

ASRock, ASUS, GIGABYTE, MSI Boards vulnerable to pre-boot memory attacks

December 19, 2025 add comment
A new UEFI flaw exposes some ASRock, ASUS, GIGABYTE, and MSI motherboards to early-boot DMA attacks, bypassing IOMMU protections. Researchers warn of a new UEFI vulnerability that affects select... Read more »

China-linked APT UAT-9686 is targeting Cisco Secure Email Gateway and Secure Email and Web Manager

December 19, 2025 add comment
Cisco disclosed a critical zero-day (CVE-2025-20393) in Secure Email Gateway and Secure Email and Web Manager, actively exploited by a China-linked group. Cisco disclosed a critical zero-day, tracked as... Read more »

Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw

December 18, 2025 add comment
Hewlett Packard Enterprise (HPE) fixed a critical OneView flaw that could allow attackers to achieve remote code execution. Hewlett Packard Enterprise (HPE) addressed a maximum-severity security vulnerability, tracked as... Read more »

DIG AI: Uncensored Darknet AI Assistant at the Service of Criminals and Terrorists

December 18, 2025 add comment
Resecurity reports a Q4 2025 surge in criminal use of DIG AI on Tor, enabling scalable illicit activity and posing new risks ahead of major 2026 events. During Q4... Read more »

U.S. CISA adds Cisco, SonicWall, and ASUS flaws to its Known Exploited Vulnerabilities catalog

December 18, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Cisco, SonicWall, and ASUS flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Apple and... Read more »

GhostPairing campaign abuses WhatsApp device linking to hijack accounts

December 18, 2025 add comment
Attackers abuse WhatsApp’s device-linking feature to hijack accounts via pairing codes in the GhostPairing campaign. Attackers are exploiting WhatsApp’s device-linking feature to hijack accounts using pairing codes in a... Read more »

SonicWall warns of actively exploited flaw in SMA 100 AMC

December 17, 2025 add comment
SonicWall warned users to patch a SMA1000 AMC flaw that was exploited as a zero-day privilege escalation vulnerability in attacks. SonicWall urged customers to address a vulnerability, tracked as... Read more »

GNV ferry fantastic under cyberattack probe amid remote hijack fears

December 17, 2025 add comment
French prosecutors probe a suspected cyberattack on GNV ferry Fantastic, raising concerns of a possible remote hijack. French prosecutors are investigating a suspected cyberattack on the GNV ferry Fantastic,... Read more »

Askul data breach exposed over 700,000 records after ransomware attack

December 17, 2025 add comment
Askul disclosed that an October RansomHouse ransomware attack compromised over 700,000 records at the Japanese e-commerce and logistics firm. Askul is a Japanese e-commerce and logistics company best known... Read more »

Russian state hackers targeted Western critical infrastructure for years, Amazon says

December 17, 2025 add comment
Amazon disclosed a years-long Russian state-backed cyber campaign targeting Western critical infrastructure from 2021 to 2025. Amazon Threat Intelligence reports a long-running Russian state-backed campaign (2021–2025) targeting Western critical... Read more »
Subscribe to our Newsletter