Exclusive articles:
CISA Alerts on Active Exploitation of Rapid7 Velociraptor Vulnerability in Ransomware Attacks
CISA has added CVE-2025-6264 to its Known Exploited Vulnerabilities (KEV) catalog, warning that ransomware operators are actively abusing a default permissions flaw in Rapid7’s...
Windows Agere Modem Driver 0-Day Flaws Exploits Enable Privilege Escalation
Microsoft has announced the removal of the legacy Agere Modem driver (ltmdm64.sys) from Windows following the discovery of two elevation of privilege vulnerabilities that...
Microsoft IIS Flaw Enables Remote Code Execution by Unauthorized Attackers
A newly disclosed vulnerability in Internet Information Services (IIS) Inbox COM Objects could allow attackers to execute arbitrary code on affected systems.
Tracked as...
Windows Remote Access Connection Manager 0-Day Flaws Under Active Exploitation
An update released on October 14, 2025, highlights a critical elevation of privilege vulnerability in the Windows Remote Access Connection Manager component.
Tracked as...
FortiOS CLI Command Bypass Flaw Allows Remote Command Execution
A newly disclosed vulnerability in FortiOS, tracked as an Incorrect Provision of Specified Functionality , can enable a local authenticated attacker to execute arbitrary...
