Security Bulletin

Threat actors could leverage a recently addressed WhatsApp Desktop for Windows spoofing flaw, tracked as CVE-2025-30401, to distribute trojanized attachments facilitating the execution of malicious code, reports The Register.

Cybernews reports that German multinational vehicle tracking service provider NexOpt had almost 1 TB of sensitive information from more than 300,000 passenger and commercial vehicles exposed as a result of an unprotected Kibana instance, which was...

Attempted attacks against TVT Digital Technology's NVMS9000 DVRs which had its firmware last updated seven years ago have surged, with devices impacted by an information disclosure flaw reported in May targeted by more than 2,500 IPs suspected to be...

A Nemzetbiztonsági Szakszolgálat Nemzeti Kibervédelmi Intézet (NBSZ NKI) tájékoztatót ad ki az Adobe szoftverfejlesztő cég termékeit érintő sérülékenységekkel kapcsolatban, azok súlyossága, valamint az egyes biztonsági hibákat érintő aktív...

A Nemzetbiztonsági Szakszolgálat Nemzeti Kibervédelmi Intézet (NBSZ NKI) riasztást ad ki a Microsoft szoftvereket érintő kritikus kockázati besorolású sérülékenységek kapcsán, azok súlyossága, kihasználhatósága és a szoftverek széleskörű...

An elevation of privilege vulnerability in the Windows Common Log File System was added to CISA's KEV list.

A threat actor has already exploited one of the flaws in a ransomware campaign with victims in the US and other countries.

New IoCs and free defense tools for Scattered Spider were made available by Silent Push.

Healthcare and IT security practitioners worry that some of the proposed amendments are not practical for a sector that lacks resources and often uses legacy equipment.

The cybersecurity startup has emerged from stealth with an AI-native security platform to automate security policies for AI applications.

Artificial intelligence poses a significant concern when it comes to nation-state cyberthreats and AI's ability to supercharge attacks.