CVE-2025-30066 supply chain attack compromised tj-actions on March 14, 2025, exposing 218 repositories and leaking ...

U.S. Treasury lifts Tornado Cash sanctions after Fifth Circuit ruling, removing 100+ ETH wallets to bolster digital asset ...

China-linked APT Aquatic Panda targeted 7 organizations in a 10-month espionage campaign using five malware families.

Medusa ransomware uses ABYSSWORKER driver with stolen certificates to disable EDR and enable RDP access, risking data ...

PenTest’s 10,000+ pentests reveal exploitable network gaps from misconfigurations and weak passwords, driving continuous ...

Active exploitation of Cisco CVE-2024-20439 & 20440 in Smart Licensing forces urgent patching of vulnerable versions.

Kaspersky reveals Head Mare and Twelve join forces targeting Russian entities via vulnerabilities and new tools, escalating ...

CERT-UA warns of a DCRat campaign via Signal targeting Ukrainian defense; UAC-0200 active since summer 2024 risks breaches.

According to Bazydlo and researcher Sina Kheirkhah, CVE-2025-23120 stems from Veeam's inconsistent handling of ...

Hackers exploit PHP flaw (CVE-2024-4577) to deploy Quasar RAT and XMRig miners, with Taiwan hit hardest. Update PHP now to ...

UAT-5918 has attacked Taiwan infrastructure since 2023 using web shells and open-source tools to steal credentials.

Continuous compliance monitoring provides real-time visibility into security, data protection, and regulatory adherence. This ...