A large scale investigation into public GitLab Cloud repositories has uncovered a significant and alarming security problem. A security researcher…
Read More
Microsoft Moves to Secure Entra ID Sign Ins Against External Script Injection Threats
Microsoft has announced a significant enhancement to its Entra ID authentication pipeline designed to protect users from a growing class…
Read More
Cox Enterprises Discloses Oracle E-Business Suite Data Breach: What Security Teams Must Know
Cox Enterprises has confirmed a data breach involving its Oracle E-Business Suite environment after threat actors exploited a previously unknown…
Read More
CrowdStrike Insider Threat Exposed: Employee Caught Sharing Sensitive Internal Data with Hackers.
A serious insider threat incident has placed the cybersecurity industry on high alert after an employee at CrowdStrike was caught…
Read More
CISA Warns of Active Remote Code Execution Attacks Targeting Oracle Identity Manager
The Cybersecurity and Infrastructure Security Agency has issued a high priority alert warning organizations about an actively exploited remote code…
Read More
SonicWall SonicOS Flaw Allows Firewalls to Crash
A high severity vulnerability in the SonicWall SonicOS firmware has been identified and publicly disclosed. Network administrators are being urged…
Read More
Salesforce Investigates Customer Data Theft Through Third Party Integration
Salesforce has launched an investigation into customer data exposure that appears to be linked to a third party integration involving…
Read More
Fortinet Warns of New FortiWeb Zero-Day Exploited in Attacks
Fortinet has released security updates to fix a newly discovered zero-day vulnerability in FortiWeb appliances. The flaw, tracked as CVE‑2025‑58034,…
Read More
Sneaky 2FA Phishing Kit Uses Browser-in-the-Browser Tactic
A new phishing-as-a-service (PhaaS) kit known as Sneaky 2FA has been observed deploying an advanced “Browser-in-the-Browser” (BitB) attack technique. The…
Read More
Meet ShinySp1d3r: A New Ransomware-As-A-Service Platform
A newly emerging ransomware-as-a-service (RaaS) platform named ShinySp1d3r has been uncovered. It is being developed by threat actors associated with…
Read More