Security Bulletin

Threat actors could leverage a recently addressed WhatsApp Desktop for Windows spoofing flaw, tracked as CVE-2025-30401, to distribute trojanized attachments facilitating the execution of malicious code, reports The Register.

Cybernews reports that German multinational vehicle tracking service provider NexOpt had almost 1 TB of sensitive information from more than 300,000 passenger and commercial vehicles exposed as a result of an unprotected Kibana instance, which was...

Attempted attacks against TVT Digital Technology's NVMS9000 DVRs which had its firmware last updated seven years ago have surged, with devices impacted by an information disclosure flaw reported in May targeted by more than 2,500 IPs suspected to be...

Discover how post-quantum cryptography protects data in the quantum era, addressing challenges and strategies for a secure digital future.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Join us as we come together in celebration of International Girls in ICT Day to inspire and empower the future leaders of technology, ensuring everyone has the opportunity to be part of this transformative journey.

Obfuscation is very important for many developers. They may protect their code for multiple reasons like copyright, anti-cheat (games), or to protect their code from being reused. If an obfuscated program does not mean automatically that it is...

An elevation of privilege vulnerability in the Windows Common Log File System was added to CISA's KEV list.

A threat actor has already exploited one of the flaws in a ransomware campaign with victims in the US and other countries.

New IoCs and free defense tools for Scattered Spider were made available by Silent Push.

Healthcare and IT security practitioners worry that some of the proposed amendments are not practical for a sector that lacks resources and often uses legacy equipment.