Author Info

A newly disclosed security flaw in WhatsApp for Windows, identified as CVE-2025-30401, has raised significant concerns among cybersecurity experts. This vulnerability allowed attackers to send seemingly harmless attachments that could execute malicious code when opened within the app. The issue affected all versions prior to 2.2450.6, posing a

Fortinet has issued crucial security updates to address a severe vulnerability in FortiSwitch devices. This flaw could allow attackers to change admin passwords without authorization, posing a significant risk to network security. Understanding the Vulnerability The vulnerability, identified as CVE-2024-48887, has been assigned a CVSS score of 9.3, indicating

The notorious RansomEXX ransomware group has been actively exploiting a critical zero-day vulnerability in the Windows Common Log File System (CLFS) to escalate privileges on compromised systems. This vulnerability, identified as CVE-2025-29824, allows attackers to gain SYSTEM-level access through low-complexity attacks that do not require user interaction. Microsoft addressed this

Cybercriminals are exploiting SourceForge to disseminate counterfeit Microsoft add-ins that install malware on victims' systems, aiming to mine and steal cryptocurrency. SourceForge.net, a reputable platform for software hosting and distribution, is popular among open-source communities for its version control, bug tracking, and forums. Despite its open submission model,

The notorious Medusa ransomware group has struck again, adding NASCAR to its list of high-profile victims. The cybercriminals have demanded a $4 million ransom, threatening to expose sensitive internal data if their demands are not met. Alongside NASCAR, the group has also targeted McFarland Commercial Insurance Services, Bridgebank Ltd, and

This week, genetic testing company 23andMe filed for bankruptcy, raising concerns about the fate of users' genetic data. With the possibility of data being sold, now is the time to consider deleting your information from their database. Why You Should Act Now When 23andMe first hinted at a potential

In a recent development, cybersecurity experts have identified new variants of the ReaderUpdate malware targeting macOS users. These variants are written in diverse programming languages such as Crystal, Nim, Rust, and Go, posing a significant threat to users of Apple devices. Emergence of New Malware Variants Initially detected as a

A cyber threat group known as 'RedCurl,' which has been involved in covert corporate espionage since 2018, has shifted tactics to include a ransomware encryptor aimed at Hyper-V virtual machines. This marks a significant evolution in their operational strategy, as they previously focused on data exfiltration from corporate

Recent discoveries have unveiled a new threat on the npm (Node package manager) platform, where malicious packages are used to secretly alter legitimate, locally installed packages, embedding a persistent reverse shell backdoor. This tactic ensures that even if the harmful packages are removed, the backdoor remains active on the victim&