Alert

Rocco Calvi, a security researcher, discovered a serious flaw in the TP-Link AX1800 WiFi 6 Router (Archer AX21/AX20) that enables local network attackers to execute code remotely as the root user. CVE-2023-28760 is a high-severity vulnerability (CVSS 7.5) in the MiniDLNA service of the router’s media-sharing feature. As described in …

A security researcher has unveiled a major vulnerability in a popular payment terminal that could allow attackers to take full control of the device in less than a minute. The Worldline Yomani XR model is used in grocery stores, cafes, repair shops, and various businesses in Switzerland. The terminal’s maintenance …

Zimperium’s zLabs has discovered a fast-spreading Android spyware called ClayRat, which targets users by posing as trusted apps like WhatsApp, Google Photos, TikTok, and YouTube. Attackers use social engineering to install malware by creating fake websites that resemble official pages. For instance, a fake GdeDPS site was used in one …

CrowdStrike has issued security updates for two vulnerabilities in its Falcon Sensor for Windows, CVE-2025-42701 and CVE-2025-42706. These flaws require local code execution and may let attackers delete files, which could affect system stability and security monitoring. Vulnerabilities found through CrowdStrike’s Bug Bounty program reflect their proactive security efforts. There’s …

After its investigation in collaboration with leading IR Firm, Mandiant into the scope of a recent cloud backup security incident, SonicWall confirm that an unauthorized party accessed firewall configuration backup files for all customers who have used SonicWall’s cloud backup service. The files contain encrypted credentials and configuration data; while …

A special alert has been issued at all international and domestic airports in Bangladesh due to the threat of cyber attacks. At the same time, 10 special instructions have been given to the airports. A letter of this instruction, signed by Air Commodore Abu Sayeed Mehboob Khan, Member (Planning and …

IBM has issued fixes for three security vulnerabilities in its IBM Security Verify Access and IBM Verify Identity Access products. These issues could permit privilege escalation, command execution, and script injection. Customers are urged to install these patches right away to avoid exploitation in production environments. CVE-2025-36355 lets authenticated users …

Oracle has issued an emergency update to fix a serious security issue in its E-Business Suite, which has been targeted in recent Cl0p data theft attacks. The critical vulnerability, CVE-2025-61882 (CVSS score: 9.8), could let an unauthenticated attacker with HTTP access compromise the Oracle Concurrent Processing component. “This vulnerability is …

Researchers monitoring for larger .ICS calendar attachments found that a flaw in Zimbra Collaboration Suite (ZCS) was used in zero-day attacks at the beginning of the year. ICS files, or iCalendar files, store plain text calendar information, like meetings and events, and allow exchange between different calendar apps. Threat actors …

On October 3, 2025, GreyNoise noted a 500% increase in scans aimed at Palo Alto Networks login portals, the highest activity level in three months. Researchers found that more than 1,285 IPs scanned Palo Alto portals, an increase from the typical 200. They noted that 93% of these IPs were …