Latest news

FortiWeb CVE-2025-64446 PoC: a critical weapon now widely available
Vulnerability

FortiWeb CVE-2025-64446 PoC: a critical weapon now widely available

16 November 2025 dark6

The cybersecurity landscape has shifted once again, driven by the public release of a proof-of-concept exploit targeting the critical vulnerability...
Read more 0
NVIDIA NeMo Framework: a critical cascade of vulnerabilities
Vulnerability

NVIDIA NeMo Framework: a critical cascade of vulnerabilities

14 November 2025 dark6

The NVIDIA NeMo Framework, a cornerstone of conversational AI development, has recently revealed a significant and frankly concerning weakness. The...
Read more 0
Critical Roundcube vulnerability (CVE-2025-49113): exploit sold in Darknet as “Email Armageddon” looms
Vulnerability

Critical Roundcube vulnerability (CVE-2025-49113): exploit sold in Darknet as “Email Armageddon” looms

6 June 2025 securebulletin.com

A decade-old Remote Code Execution (RCE) flaw in Roundcube, the widely used open-source email client, has escalated into a global...
Read more 0
Windows 11 fails to start after KB5058405 update
Vulnerability

Windows 11 fails to start after KB5058405 update

29 May 2025 securebulletin.com

The recent disclosure by Microsoft regarding the KB5058405 cumulative update for Windows 11 has significant implications for enterprise cybersecurity and...
Read more 0
Analysis of recent high-severity vulnerabilities in GitLab and Atlassian products
Vulnerability

Analysis of recent high-severity vulnerabilities in GitLab and Atlassian products

22 May 2025 securebulletin.com

Both GitLab and Atlassian have recently released critical security patches addressing a series of high-severity vulnerabilities across their core product...
Read more 0
Malicious npm packages hijack macOS Cursor AI IDE
Vulnerability

Malicious npm packages hijack macOS Cursor AI IDE

9 May 2025 securebulletin.com

The Socket Threat Research Team has uncovered a sophisticated supply chain attack targeting macOS developers using the Cursor AI code...
Read more 0
Stealthy Linux backdoor leveraging residential proxies and NHAS reverse SSH
Vulnerability

Stealthy Linux backdoor leveraging residential proxies and NHAS reverse SSH

4 May 2025 securebulletin.com

A recently discovered Linux backdoor (SHA256: ea41b2bf1064efcb6196bb79b40c5158fc339a36a3d3ddee68c822d797895b4e) employs advanced evasion techniques to bypass detection while establishing persistent access via SOCKS5...
Read more 0
MITRE Signals Critical Risk to CVE Program as Federal Funding Expires
Vulnerability

MITRE Signals Critical Risk to CVE Program as Federal Funding Expires

15 April 2025 securebulletin.com

The cybersecurity world faces a significant challenge as the Common Vulnerabilities and Exposures (CVE) program, a cornerstone of global vulnerability...
Read more 0
Surge in Palo Alto Networks scanner activity
Vulnerability

Surge in Palo Alto Networks scanner activity

1 April 2025 securebulletin.com

GreyNoise has detected a significant surge in login scanning activity aimed at Palo Alto Networks PAN-OS GlobalProtect portals. In the...
Read more 0
Critical Remote Code Execution vulnerability discovered in GiveWP WordPress Plugin (CVE-2025-0912)
Vulnerability

Critical Remote Code Execution vulnerability discovered in GiveWP WordPress Plugin (CVE-2025-0912)

5 March 2025 securebulletin.com

A critical security vulnerability, identified as CVE-2025-0912, has been discovered in the GiveWP WordPress donation plugin. This flaw potentially exposes...
Read more 0
Critical Palo Alto Firewall flaw under active attack: Patch NOW!
Vulnerability

Critical Palo Alto Firewall flaw under active attack: Patch NOW!

19 February 2025 dark6

Security teams, take note: A critical vulnerability (CVE-2025-0108) in Palo Alto Networks’ PAN-OS is under active exploitation in the wild....
Read more 0
The rising threat of ADFS spoofing attacks
Vulnerability

The rising threat of ADFS spoofing attacks

5 February 2025 securebulletin.com

In a recent alarming development, hackers have launched a sophisticated phishing campaign targeting Microsoft Active Directory Federation Services (ADFS) to...
Read more 0