A new XSS vulnerability has been discovered in the Krpano virtual tour framework, which leads hackers to inject spam advertisements into more than 350 websites. ...

Orange Group, a prominent French telecommunications company, has confirmed a data breach after a hacker going by the alias Rey, associated with the HellCat ransomware ...

The Australian Commonwealth government has banned using Kaspersky Lab Inc. products and services on all non-corporate entities. This recent directive (002-2025) issued by the Department ...

Bybit, the second-largest cryptocurrency exchange by trading volume, has confirmed a massive security breach that led to the theft of $1.46 billion in cryptocurrency, making ...

Cybercriminals have taken phishing attacks to a new level with the emergence of Darcula PhaaS v3, a Phishing-as-a-Service (PhaaS) platform to create perfect duplicates of ...

OpenSSH, a widely used secure networking utility suite, has disclosed two vulnerabilities this February. When exploited, these flaws, identified as CVE-2025-26465 and CVE-2025-26466, could allow ...

A Chinese hacking group is using MAVInject.exe, a legitimate Microsoft Application Virtualization (App-V) injector, as part of their attack strategy to stay undetected in their ...

Palo Alto Networks recently addressed an authentication bypass vulnerability (CVE-2025-0108) affecting its PAN-OS firewall management web interface. This vulnerability enables an unauthenticated attacker with network ...

A new exploit escapes the prior security fix in the NVIDIA Container Toolkit’s vulnerability to produce major security risks for people implementing GPU-accelerated containers. Attackers ...