Internet Security

Five-year-old Fortinet FortiOS SSL VPN vulnerability actively exploited

December 25, 2025 add comment
Fortinet reported active exploitation of a five-year-old FortiOS SSL VPN flaw, abused in the wild under specific configurations. Fortinet researchers observed “recent abuse” of a five-year-old security vulnerability, tracked... Read more »

High-severity MongoDB flaw CVE-2025-14847 could lead to server takeover

December 25, 2025 add comment
MongoDB addressed a high-severity vulnerability that can be exploited to achieve remote code execution on vulnerable servers. MongoDB addressed a high-severity vulnerability, tracked as CVE-2025-14847 (CVSS score 8.7), an... Read more »

FBI seized ‘web3adspanels.org’ hosting stolen logins

December 24, 2025 add comment
The U.S. seized the ‘web3adspanels.org’ domain and database used by cybercriminals to store stolen bank login credentials. The FBI seized the domain web3adspanels[.]org and its database after cybercriminals used... Read more »

U.S. Federal Communications Commission (FCC) bans foreign-made drones over national security concerns

December 24, 2025 add comment
The FCC announced a ban on drones and critical components made in foreign countries, citing national security concerns. The U.S. Federal Communications Commission (FCC) said it has banned drones... Read more »

Italian regulator rules Apple’s ATT feature limits competition

December 24, 2025 add comment
Italy fined Apple €98.6 million, ruling its App Tracking Transparency feature limited competition in the App Store. Italy’s antitrust authority fined Apple €98.6 million ($116 million) for ruling that... Read more »

La Poste outage after a cyber attack disrupts digital banking and online services

December 24, 2025 add comment
La Poste said a major network incident took its systems offline, disrupting digital banking and online services for millions of users. The French national postal service La Poste confirmed... Read more »

Red Hat GitLab breach exposes data of 21,000 Nissan customers

December 23, 2025 add comment
Hackers breached Red Hat’s GitLab, stealing data of 21,000 customers; Nissan confirmed exposure via a self-managed GitLab instance. Japanese carmaker Nissan disclosed a data breach tied to a self-managed... Read more »

Critical n8n flaw could enable arbitrary code execution

December 23, 2025 add comment
A critical flaw in the n8n automation platform could allow attackers to execute arbitrary code if exploited under specific conditions. Researchers warn that a critical vulnerability, tracked as CVE-2025-68613 (CVSS... Read more »

Why Third-Party Access Remains the Weak Link in Supply Chain Security

December 23, 2025 add comment
Attackers exploited a supply chain weakness, abusing trusted components to compromise systems and spread malicious activity across connected targets. Your next breach probably won’t start inside your network—it will... Read more »

U.S. CISA adds a flaw in Digiever DS-2105 Pro to its Known Exploited Vulnerabilities catalog

December 23, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a Digiever DS-2105 Pro flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Digiever DS-2105... Read more »
Subscribe to our Newsletter