CVE/vulnerability
7-Zip 0-Day Flaw Added to CISA’s List of Actively Exploited Vulnerabilities
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical 0-day vulnerability affecting the popular file compression utility, 7-Zip, to its Known...
CVE/vulnerability
Logsign Vulnerability Allows Remote Attackers to Bypass Authentication
A critical security vulnerability has been identified and disclosed in the Logsign Unified SecOps Platform, allowing remote attackers to bypass authentication mechanisms.The vulnerability tracked...
cyber security
Hackers Exploiting SimpleHelp Vulnerabilities to Deploy Malware on Systems
Cybercriminals are actively exploiting vulnerabilities in SimpleHelp Remote Monitoring and Management (RMM) software to infiltrate networks, create unauthorized administrator accounts, and deploy malware, including...
AI
Developers Beware! Malicious ML Models Found on Hugging Face Platform
In a concerning development for the machine learning (ML) community, researchers from ReversingLabs have uncovered malicious ML models on the Hugging Face platform, a...
CVE/vulnerability
Dell Update Manager Plugin Flaw Exposes Sensitive Data
Dell Technologies has issued a security advisory (DSA-2025-047) to address a vulnerability in the Dell Update Manager Plugin (UMP) that could expose sensitive data to malicious...
CVE/vulnerability
Critical Flaws in HPE Aruba ClearPass Expose Systems to Arbitrary Code Execution
Hewlett Packard Enterprise (HPE) has issued a high-priority security bulletin addressing multiple vulnerabilities in its Aruba ClearPass Policy Manager (CPPM).These flaws, which range from...
cyber security
XE Hacker Group Exploiting Veracore 0-Day’s to Deploy Malware & Steal Credit Card Details
The XE Group, a sophisticated Vietnamese-origin cybercrime organization active since 2013, has escalated its operations by exploiting two zero-day vulnerabilities in VeraCore software, CVE-2024-57968...
CVE/vulnerability
F5 BIG-IP SNMP Flaw Allows Attackers to Launch DoS Attacks
A recently disclosed vulnerability in F5's BIG-IP systems has raised alarm within the cybersecurity community.The flaw, designated CVE-2025-21091, enables remote attackers to exploit SNMP configuration...