Critical XXE Bug CVE-2025-66516 (CVSS 10.0) Hits Apache Tika, Requires Urgent Patch
Dec 05, 2025Ravie LakshmananApplication Security / Vulnerability A critical security flaw has been disclosed in Apache Tika that could result...
Vulnerability A
ShadowPad Malware Actively Exploits WSUS Vulnerability for Full System Access
Nov 24, 2025Ravie LakshmananMalware / Vulnerability A recently patched security flaw in Microsoft Windows Server Update Services (WSUS) has been...
Samsung Zero-Click Flaw Exploited to Deploy LANDFALL Android Spyware via WhatsApp
Nov 07, 2025Ravie LakshmananMobile Security / Vulnerability A now-patched security flaw in Samsung Galaxy Android devices was exploited as a...
Trojanized ESET Installers Drop Kalambur Backdoor in Phishing Attacks on Ukraine
Nov 06, 2025Ravie LakshmananMalware / Vulnerability A previously unknown threat activity cluster has been observed impersonating Slovak cybersecurity company ESET...
New “Brash” Exploit Crashes Chromium Browsers Instantly with a Single Malicious URL
Oct 30, 2025Ravie LakshmananBrowser Security / Vulnerability A severe vulnerability disclosed in Chromium's Blink rendering engine can be exploited to...
Phoenix RowHammer Attack Bypasses Advanced DDR5 Memory Protections in 109 Seconds
Sep 16, 2025Ravie LakshmananHardware Security / Vulnerability A team of academics from ETH Zürich and Google has discovered a new...
Opera Web Browser Resolves Significant Security Vulnerability That Could Have Exposed Your Data
Oct 30, 2024Ravie Lakshmanan Browser Security / Vulnerability An addressed security vulnerability in the Opera web browser could have empowered...
Scientists Unravel Weaknesses in Open-Source Artificial Intelligence and Machine Learning Models
October 29, 2024Ravie LakshmananAI Security / Vulnerability Approximately thirty-six security vulnerabilities have been revealed in different open-source artificial intelligence (AI)...
Ivanti CSA Flaws Used by Nation-State Hackers to Infiltrate Networks
October 14, 2024Ravie LakshmananNetwork Security / Vulnerability A suspected group of attackers from a nation-state has been spotted exploiting three...
Security Vulnerability in WordPress LiteSpeed Cache Plugin Puts Websites at Risk of XSS Attacks
04 Oct, 2024Ravie LakshmananWebsite Protection / Vulnerability An identified high-risk security loophole has been disclosed in the LiteSpeed Cache plugin...
Significant Linux CUPS Printing System Weaknesses That Might Enable Remote Command Execution
Sep 27, 2024Ravie LakshmananLinux / Security Breach A recent collection of security vulnerabilities has been revealed in the OpenPrinting Common...
Security Vulnerabilities in Linux CUPS Printing System May Lead to Remote Command Execution
September 27, 2024Ravie LakshmananLinux / Vulnerability Recent security vulnerabilities have been uncovered in the OpenPrinting Common Unix Printing System (CUPS)...
ChatGPT macOS Vulnerability Might Have Enabled Persistent Surveillance via Memory Feature
September 25, 2024Ravie LakshmananAI / Security Flaw An already fixed security flaw in OpenAI's ChatGPT application for macOS could have...
Severe Weakness in Microchip ASF Jeopardizes IoT Devices with Remote Code Execution Risk
September 23, 2024Ravie LakshmananInternet of Things Security / Vulnerability An alarming security vulnerability has been revealed in the Microchip Advanced...
Google Resolves GCP Composer Vulnerability That Could Have Resulted in Remote Code Execution
Sep 16, 2024Ravie LakshmananCloud Security / Vulnerability An already-resolved critical security weakness affecting Google Cloud Platform (GCP) Composer had the...
