Newsroom

ASUS Warns of Critical Auth Bypass Flaw

The vulnerability is in the AiCloud feature in some ASUS routers, which is designed to enable users to share and manage their files across devices

Apple Fixes Two Zero Days in iOS

Malvertising Campaign Deploys Node.js Malware

Attackers Target FortiGate Devices With New Post-Exploit Technique

Critical Fortinet Flaw Allows Remote, Unauthenticated Admin Password Change

The vulnerability has a CVSS score of 9.8 and is obviously rated as critical.

CrushFTP CVE-2025-31161 Targeted by Attackers

Ivanti CVE-2025-22457 Under Active Attack

The vulnerability affects many versions of Ivanti appliances and is being exploited by a Chinese actor

CISA Warns of RESURGE Malware Targeting Ivanti Appliances

The Phishing Pages That Could Get You Killed

A phishing operation tied to Russian intelligence mimics Ukrainian paramilitary recruitment pages to unmask citizens opposing the war. Search engines helped rank the fakes — exposing users to surveillance, arrest, or worse.

Stealthy WordPress Malware Exploits Mu-Plugins Directory

Attackers are hiding malware in WordPress mu-plugins, bypassing detection and gaining persistent access. Learn how it works and how to secure your site.