Newly Patched Critical Microsoft WSUS Flaw Comes Under Active Exploitation
Microsoft on Thursday released out-of-band security updates to patch a critical-severity Windows Server Update Service (WSUS) vulnerability with…
Five New Exploited Bugs Land in CISA’s Catalog — Oracle and Microsoft Among Targets
î ‚Oct 20, 2025î „Ravie LakshmananThreat Intelligence / Data Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday…
F5 Breach Exposes BIG-IP Source Code — Nation-State Hackers Behind Massive Intrusion
î ‚Oct 15, 2025î „Ravie LakshmananVulnerability / Threat Intelligence U.S. cybersecurity company F5 on Wednesday disclosed that unidentified threat actors…
OPINION: Unitary Executive Theory is a bad idea for computers, a worse one for presidents
Cybersecurity incidents have been in the news lately. Due to the disruptive and destructive nature of such incidents,…
One Click Can Turn Perplexity’s Comet AI Browser Into a Data Thief
î ‚Oct 04, 2025î „Ravie LakshmananAgentic AI / Enterprise Security Cybersecurity researchers have disclosed details of a new attack called…
Researchers Disclose Google Gemini AI Flaws Allowing Prompt Injection and Cloud Exploits
î ‚Sep 30, 2025î „Ravie LakshmananArtificial Intelligence / Vulnerability Cybersecurity researchers have disclosed three now-patched security vulnerabilities impacting Google’s Gemini…
Cisco ASA Zero-Day Duo Under Attack; CISA Triggers Emergency Mitigation Directive
î ‚Sep 25, 2025î „Ravie LakshmananZero-Day / Vulnerability Cisco is urging customers to patch two security flaws impacting the VPN…
FBI Warns of UNC6040 and UNC6395 Targeting Salesforce Platforms in Data Theft Attacks
The U.S. Federal Bureau of Investigation (FBI) has issued a flash alert to release indicators of compromise (IoCs)…
Apple iPhone Air and iPhone 17 Feature A19 Chips With Spyware-Resistant Memory Safety
î ‚Sep 10, 2025î „Ravie LakshmananSpyware / Vulnerability Apple on Tuesday revealed a new security feature called Memory Integrity Enforcement…
WhatsApp Issues Emergency Update for Zero-Click Exploit Targeting iOS and macOS Devices
î ‚Aug 30, 2025î „Ravie LakshmananZero-Day / Vulnerability WhatsApp has addressed a security vulnerability in its messaging apps for Apple…
DOGE put Americans’ Social Security data at risk, whistleblower says
DOGE’s actions to upload a Social Security database to a vulnerable cloud server have effectively created “a live…
Someone Created First AI-Powered Ransomware Using OpenAI’s gpt-oss:20b Model
Cybersecurity company ESET has disclosed that it discovered an artificial intelligence (AI)-powered ransomware variant codenamed PromptLock. Written in…