Newly Patched Critical Microsoft WSUS Flaw Comes Under Active Exploitation
Oct 24, 2025Ravie LakshmananVulnerability / Network Security Microsoft on Thursday released out-of-band security updates to patch a critical-severity Windows Server...
released
Prosper Marketplace Data Breach Expands: 17.6 Million Users Impacted in Database Intrusion
In a significant development in one of the year’s largest fintech breaches, new reports released today confirm that Prosper...
News Alert: SquareX reveals new browser threat — AI sidebars cloned to exploit user trust
PALO ALTO, Calif., Oct. 23, 2025, CyberNewswire: SquareX released critical research exposing a new class of attack targeting AI...
AI Sidebar Spoofing Attack: SquareX Uncovers Malicious Extensions that Impersonate AI Browser Sidebars
Palo Alto, California, October 23rd, 2025, CyberNewsWire SquareX released critical research exposing a new class of attack targeting AI...
TP-Link Patches Four Omada Gateway Flaws, Two Allow Remote Code Execution
Oct 22, 2025Ravie LakshmananVulnerability / Network Security TP-Link has released security updates to address four security flaws impacting Omada gateway...
Samba WINS Command Injection Vulnerability (CVE-2025-10230) Notice
Overview Recently, NSFOCUS CERT detected that Samba released a security update to fix the Samba WINS command injection vulnerability (CVE-2025-10230);...
Microsoft’s Patch Tuesday: 172 Flaws Fixed
Image: EV_Korobov/Adobe Stock Microsoft has released its October 2025 Patch Tuesday updates, addressing 172 security flaws, including six zero-day vulnerabilities....
Two New Windows Zero-Days Exploited in the Wild — One Affects Every Version Ever Shipped
Microsoft on Tuesday released fixes for a whopping 183 security flaws spanning its products, including three vulnerabilities that have come...
Patch Tuesday, October 2025 ‘End of 10’ Edition
Microsoft today released software updates to plug a whopping 172 security holes in its Windows operating systems, including at least...
RMPocalypse: Single 8-Byte Write Shatters AMD’s SEV-SNP Confidential Computing
Oct 14, 2025Ravie LakshmananVulnerability / Hardware Security Chipmaker AMD has released fixes to address a security flaw dubbed RMPocalypse that...
Critical Oracle EBS Flaw Could Expose Sensitive Data
Image: Envato/GroundPicture Oracle has released a patch for a severe vulnerability in its E-Business Suite (EBS) that could allow unauthenticated...
Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks
Oct 06, 2025Ravie LakshmananVulnerability / Threat Intelligence Oracle has released an emergency update to address a critical security flaw in...
Abusing Notion’s AI Agent for Data Theft
Notion just released version 3.0, complete with AI agents. Because the system contains Simon Willson’s lethal trifecta, it’s vulnerable to...
State-Sponsored Hackers Exploiting Libraesva Email Security Gateway Vulnerability
Sep 24, 2025Ravie LakshmananVulnerability / Email Security Libraesva has released a security update to address a vulnerability in its Email...
SolarWinds Releases Hotfix for Critical CVE-2025-26399 Remote Code Execution Flaw
Sep 23, 2025Ravie LakshmananVulnerability / Data Security SolarWinds has released hot fixes to address a critical security flaw impacting its...
