All Recent Posts

Internet Security

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 72

November 23, 2025 add comment
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Contagious Interview Actors Now Utilize JSON Storage Services... Read more »
Internet Security

SonicWall flags SSLVPN flaw allowing firewall crashes

November 23, 2025 add comment
SonicWall warns of a high-severity buffer overflow flaw in SonicOS SSLVPN (CVE-2025-40601) that lets attackers crash Gen7 and Gen8 firewalls. A new high-severity SonicOS SSLVPN flaw, tracked as CVE-2025-40601... Read more »
Help Net Security

Week in review: Stealth-patched FortiWeb vulnerability under active exploitation, Logitech data breach

November 23, 2025 add comment
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: The tech that turns supply chains from brittle to unbreakable In this Help Net... Read more »
Internet Security

BadAudio malware: how APT24 scaled its cyberespionage through supply chain attacks

November 22, 2025 add comment
APT24 used supply chain attacks and varied techniques to deploy the BadAudio malware in a long-running cyberespionage campaign. China-linked group APT24 used supply-chain attacks and multiple techniques over three... Read more »
Internet Security

U.S. CISA adds an Oracle Fusion Middleware flaw to its Known Exploited Vulnerabilities catalog

November 22, 2025 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds an Oracle Fusion Middleware flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a an Oracle... Read more »
Internet Security

CrowdStrike denies breach after insider sent internal screenshots to hackers

November 21, 2025 add comment
CrowdStrike says an insider shared internal screenshots with hackers but confirms no system breach and no customer data exposure. BleepingComputer first reported that CrowdStrike said an insider shared internal... Read more »
Security of TechRepublic

Amazon Issuing $2.5B in Refunds to Eligible Prime Customers to Settle FTC Suit

November 21, 2025 add comment
Amazon is paying out $2.5 billion to eligible Prime customers to settle an FTC lawsuit that alleged it enrolled people without their consent. The post Amazon Issuing $2.5B in... Read more »
Security of TechRepublic

Salesforce Confirms New Breach Linked to Gainsight Apps

November 21, 2025 add comment
Salesforce is probing unusual activity in Gainsight apps that may have exposed customer data, while ShinyHunters claims a new OAuth-based attack. The post Salesforce Confirms New Breach Linked to... Read more »
Internet Security

SolarWinds addressed three critical flaws in Serv-U

November 21, 2025 add comment
SolarWinds patched three critical vulnerabilities in its Serv-U file transfer solution that could allow remote code execution. SolarWinds addressed three critical vulnerabilities in its Serv-U file transfer solution that... Read more »
Internet Security

Massive data leak hits Italian railway operator Ferrovie dello Stato via Almaviva hack

November 21, 2025 add comment
Ferrovie dello Stato Italiane (FS) data leaked after a breach at IT provider Almaviva. A hacker claims the theft of 2.3 TB of sensitive data. Data belonging to Italy’s national... Read more »
Subscribe to our Newsletter