actively

SonicWall warns of actively exploited flaw in SMA 100 AMC

AndyC 18 December 2025

SonicWall warns of actively exploited flaw in SMA 100 AMC Pierluigi Paganini December 17, 2025 SonicWall warned users to patch...

When Zero-Days Go Active: What Ongoing Windows, Chrome, and Apple Exploits Reveal About Modern Intrusion Risk

AndyC 18 December 2025

A series of actively exploited zero-day vulnerabilities affecting Windows, Google Chrome, and Apple platforms was disclosed in mid-December, according...

Four years later, Irish health service offers €750 to victims of ransomware attack

Microsoft Patch Tuesday security updates for December 2025 fixed an actively exploited zero-day

AndyC 11 December 2025

Microsoft Patch Tuesday security updates for December 2025 fixed an actively exploited zero-day Pierluigi Paganini December 10, 2025 Microsoft Patch...

Sneeit WordPress RCE Exploited in the Wild While ICTBroadcast Bug Fuels Frost Botnet Attacks

AndyC 9 December 2025

A critical security flaw in the Sneeit Framework plugin for WordPress is being actively exploited in the wild, per data...

Google’s latest Android security update fixes two actively exploited flaws

AndyC 3 December 2025

Google’s latest Android security update fixes two actively exploited flaws Pierluigi Paganini December 02, 2025 Google’s latest Android security update...

The Cyber Resilience Act and SaaS: Why Compliance is Only Half the Battle

Fraudulent email domain tracker: November 2025

AndyC 26 November 2025

Every month, we publish a snapshot of the email domains most actively used in fake account creation and related...

Tsundere Botnet Expands Using Game Lures and Ethereum-Based C2 on Windows

AndyC 21 November 2025

Nov 20, 2025Ravie LakshmananBotnet / Malware Cybersecurity researchers have warned of an actively expanding botnet dubbed Tsundere that's targeting Windows...

7-Zip RCE flaw (CVE-2025-11001) actively exploited in attacks in the wild

AndyC 20 November 2025

7-Zip RCE flaw (CVE-2025-11001) actively exploited in attacks in the wild Pierluigi Paganini November 19, 2025 A remote code execution...

Microsoft Patch Tuesday security updates for November 2025 fixed an actively exploited Windows Kernel bug

AndyC 12 November 2025

Microsoft Patch Tuesday security updates for November 2025 fixed an actively exploited Windows Kernel bug Pierluigi Paganini November 12, 2025...

Signal: We have no choice but to use AWS

Security Training Just Became Your Biggest Security Risk

AndyC 30 October 2025

Your security training is actively making your organization less secure. This isn’t vendor hyperbole—it’s the uncomfortable reality facing every CISO...

Active Exploits Hit Dassault and XWiki — CISA Confirms Critical Flaws Under Attack

AndyC 30 October 2025

Oct 29, 2025Ravie LakshmananVulnerability / Malware Threat actors are actively exploiting multiple security flaws impacting Dassault Systèmes DELMIA Apriso and...

Critical Exploit Lets Hackers Bypass Authentication in WordPress Service Finder Theme

AndyC 10 October 2025

Oct 09, 2025Ravie LakshmananVulnerability / Website Security Threat actors are actively exploiting a critical security flaw impacting the Service Finder...

Broadcom patches VMware Zero-Day actively exploited by UNC5174

AndyC 1 October 2025

Broadcom patches VMware Zero-Day actively exploited by UNC5174 Pierluigi Paganini September 30, 2025 Broadcom patched six VMware flaws, including CVE-2025-41244,...

Cisco fixed actively exploited zero-day in Cisco IOS and IOS XE software

AndyC 25 September 2025

Cisco fixed actively exploited zero-day in Cisco IOS and IOS XE software Pierluigi Paganini September 25, 2025 Cisco addressed a...

CVE-2025-10585 is the sixth actively exploited Chrome zero-day patched by Google in 2025

AndyC 19 September 2025

CVE-2025-10585 is the sixth actively exploited Chrome zero-day patched by Google in 2025 Pierluigi Paganini September 18, 2025 Google addressed...

actively

SonicWall warns of actively exploited flaw in SMA 100 AMC

When Zero-Days Go Active: What Ongoing Windows, Chrome, and Apple Exploits Reveal About Modern Intrusion Risk

Microsoft Patch Tuesday security updates for December 2025 fixed an actively exploited zero-day

Sneeit WordPress RCE Exploited in the Wild While ICTBroadcast Bug Fuels Frost Botnet Attacks

Google’s latest Android security update fixes two actively exploited flaws

Fraudulent email domain tracker: November 2025

Tsundere Botnet Expands Using Game Lures and Ethereum-Based C2 on Windows

7-Zip RCE flaw (CVE-2025-11001) actively exploited in attacks in the wild

Microsoft Patch Tuesday security updates for November 2025 fixed an actively exploited Windows Kernel bug

Active Exploits Hit Dassault and XWiki — CISA Confirms Critical Flaws Under Attack

Critical Exploit Lets Hackers Bypass Authentication in WordPress Service Finder Theme

Broadcom patches VMware Zero-Day actively exploited by UNC5174

Cisco fixed actively exploited zero-day in Cisco IOS and IOS XE software

CVE-2025-10585 is the sixth actively exploited Chrome zero-day patched by Google in 2025

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

Microsoft 365 accounts targeted in wave of OAuth phishing attacks

State-linked and criminal hackers use device code phishing against M365 users

Three ways teams can tackle Iran’s tangled web of state-sponsored espionage

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed