Newsroom

Stealthy WordPress Malware Exploits Mu-Plugins Directory

Attackers are hiding malware in WordPress mu-plugins, bypassing detection and gaining persistent access. Learn how it works and how to secure your site.

Chrome Zero Day CVE-2025-2783 Used in Targeted Attacks

Critical Bugs In Ingress-NGINX Allow Kubernetes Cluster Takeover

Critical Next.js CVE-2025-29927 Flaw Disclosed

Apache Tomcat CVE-2025-24813 Under Attack

CISA Warns of Supply Chain Compromise of tj-actions/changed-files GitHub Action

CISA Adds Apple CVE-2025-24201 to KEV Catalog

Microsoft Disrupts Huge Malvertising Campaign

Executives Receive Fake Snail Mail BianLian Ransomware Notes

Executives are receiving something strange from scammers claiming to be linked to the BianLian group: Fake ransomware letters delivered via snail mail

Microsoft Patches Critical RCE Flaw in Windows KDC Proxy

Microsoft has patched CVE-2024-43639, a critical remote code execution (RCE) vulnerability in Windows KDC Proxy.