Samsung Mobile Flaw Exploited as Zero-Day to Deploy LANDFALL Android Spyware
î ‚Nov 07, 2025î „Ravie LakshmananMobile Security / Vulnerability A now-patched security flaw in Samsung Galaxy Android devices was exploited…
Chrome Zero-Day Exploited to Deliver Italian Memento Labs’ LeetAgent Spyware
The zero-day exploitation of a now-patched security flaw in Google Chrome led to the distribution of an espionage-related…
Newly Patched Critical Microsoft WSUS Flaw Comes Under Active Exploitation
Microsoft on Thursday released out-of-band security updates to patch a critical-severity Windows Server Update Service (WSUS) vulnerability with…
Five New Exploited Bugs Land in CISA’s Catalog — Oracle and Microsoft Among Targets
î ‚Oct 20, 2025î „Ravie LakshmananThreat Intelligence / Data Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday…
F5 Breach Exposes BIG-IP Source Code — Nation-State Hackers Behind Massive Intrusion
î ‚Oct 15, 2025î „Ravie LakshmananVulnerability / Threat Intelligence U.S. cybersecurity company F5 on Wednesday disclosed that unidentified threat actors…
Discord breach sparks privacy fears as proof-of-age IDs leak through third-party provider
Breach comes amid growing global efforts to enforce online age verification laws Discord has admitted that a subset…
ShinyHunters joins Crimson Collective in coordinated extortion effort against Red Hat
New alliance threatens to publish all stolen data unless ransom negotiations commence The fallout from Red Hat’s recent…
One Click Can Turn Perplexity’s Comet AI Browser Into a Data Thief
î ‚Oct 04, 2025î „Ravie LakshmananAgentic AI / Enterprise Security Cybersecurity researchers have disclosed details of a new attack called…
Researchers Disclose Google Gemini AI Flaws Allowing Prompt Injection and Cloud Exploits
î ‚Sep 30, 2025î „Ravie LakshmananArtificial Intelligence / Vulnerability Cybersecurity researchers have disclosed three now-patched security vulnerabilities impacting Google’s Gemini…
Cisco ASA Zero-Day Duo Under Attack; CISA Triggers Emergency Mitigation Directive
î ‚Sep 25, 2025î „Ravie LakshmananZero-Day / Vulnerability Cisco is urging customers to patch two security flaws impacting the VPN…
FBI Warns of UNC6040 and UNC6395 Targeting Salesforce Platforms in Data Theft Attacks
The U.S. Federal Bureau of Investigation (FBI) has issued a flash alert to release indicators of compromise (IoCs)…
Apple iPhone Air and iPhone 17 Feature A19 Chips With Spyware-Resistant Memory Safety
î ‚Sep 10, 2025î „Ravie LakshmananSpyware / Vulnerability Apple on Tuesday revealed a new security feature called Memory Integrity Enforcement…