Security News

Microsoft April 2025 Patch Tuesday fixes exploited zero-day, 134 flaws
2025-04-08 17:50

Today is Microsoft's April 2025 Patch Tuesday, which includes security updates for 134 flaws, including one actively exploited zero-day vulnerability. [...]

Google Releases Android Update to Patch Two Actively Exploited Vulnerabilities
2025-04-08 04:05

Google has shipped patches for 62 vulnerabilities, two of which it said have been exploited in the wild. The two high-severity vulnerabilities are listed below - CVE-2024-53150 (CVSS score: 7.8) -...

Chrome to patch decades-old flaw that let sites peek at your history
2025-04-07 14:04

After 23 years, the privacy plumber has finally arrived to clean up this mess A 23-year-old side-channel attack for spying on people's web browsing histories will get shut down in the forthcoming...

Week in review: Probing activity on Palo Alto Networks GlobalProtect portals, Patch Tuesday forecast
2025-04-06 08:00

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Attackers are probing Palo Alto Networks GlobalProtect portals Cybersecurity company GreyNoise is...

April 2025 Patch Tuesday forecast: More AI security introduced by Microsoft
2025-04-04 05:45

Microsoft is continuing to build on their AI cybersecurity strategy and this month announced the introduction of new agents in Microsoft Security Copilot. They are introducing agents for phishing...

Still Using an Older Version of iOS or iPadOS? Update Now to Patch These Critical Security Vulnerabilities
2025-04-02 18:19

Apple has also fixed vulnerabilities in iPadOS 17.7.6, macOS Sonoma 14.7.5, and macOS Ventura 13.7.5, as well as its recently released iOS 18.4.

CrushFTP: Patch critical vulnerability ASAP! (CVE-2025-2825)
2025-03-27 11:12

CrushFTP has fixed a critical vulnerability (CVE-2025-2825) in its enterprise file transfer solution that could be exploited by remote, unauthenticated attackers to access vulnerable...

Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks
2025-03-26 11:10

Google has released out-of-band fixes to address a high-severity security flaw in its Chrome browser for Windows that has been exploited in the wild as part of attacks targeting organizations in...

CrushFTP warns users to patch unauthenticated access flaw immediately
2025-03-25 20:11

CrushFTP warned customers of an unauthenticated HTTP(S) port access vulnerability and urged them to patch their servers immediately. [...]

New Windows zero-day leaks NTLM hashes, gets unofficial patch
2025-03-25 18:22

Free unofficial patches are available for a new Windows zero-day vulnerability that can let remote attackers steal NTLM credentials by tricking targets into viewing malicious files in Windows...