APT Groups Exploit Microsoft ClickOnce to Deploy Malware as Trusted Executables
A sophisticated malware campaign known as "OneClik" has been detected targeting the oil, gas, and energy industries, according to a new finding made by...
Critical Kibana Vulnerabilities Enable Heap Corruption and Remote Code Execution
Elastic has disclosed a severe security flaw in Kibana, tracked as CVE-2025-2135 with a critical CVSS score of 9.9, enabling attackers to trigger heap...
Linux CentOS Web Panel Flaw Lets Attackers Execute Malicious Remote Code – PoC Released
A severe security flaw (CVE-2025-48703) in CentOS Web Panel (CWP) enables unauthenticated attackers to execute arbitrary commands on affected servers.
This vulnerability impacts CWP...
Building Security Awareness For DevOps Teams Through Automated Training
Developers have become prime targets for cybercriminals. Their access to production systems, code repositories, and sensitive data makes them valuable prizes for attackers.
Yet...
CISA Releases ICS Advisories Addressing Current Vulnerabilities and Exploits
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released eight Industrial Control System (ICS) advisories on June 24, 2025, highlighting critical vulnerabilities across global...
