𝗔𝗽𝗽𝗹𝗲 𝗪𝗲𝗯𝗞𝗶𝘁 𝟬-𝗗𝗮𝘆 𝗘𝘅𝗽𝗹𝗼𝗶𝘁𝗲𝗱, 𝗖𝗜𝗦𝗔 𝗪𝗮𝗿𝗻𝘀
CISA has issued an urgent alert about a critical zero-day vulnerability in Apple WebKit that is being actively exploited in real-world attacks. The flaw, tracked as CVE-2025-43529, has been added [...]
Microsoft Shares Fixes for React2Shell RCE Flaw
Microsoft has released security guidance to address a critical vulnerability called React2Shell (CVE-2025-55182). The issue affects applications built with React Server Components and Next.js and can result in full server [...]
Frogblight Android Malware Steals SMS & Device Data
Frogblight is a sophisticated Android banking Trojan mainly targeting users in Turkey by pretending to be official government services. First seen in August 2025, it initially posed as an app [...]
JSCEAL Malware Targeting Windows Users to Steal Credentials
JSCEAL is a new threat targeting Windows users, mainly people using cryptocurrency apps or accounts with sensitive data. Check Point Research first reported it in July 2025. Since then, the [...]
𝗩𝗦 𝗖𝗼𝗱𝗲 𝗠𝗮𝗹𝘄𝗮𝗿𝗲 𝗔𝗹𝗲𝗿𝘁: 𝗙𝗮𝗸𝗲 𝗣𝗡𝗚 𝗙𝗶𝗹𝗲𝘀 𝗛𝗶𝗱𝗶𝗻𝗴 𝗧𝗿𝗼𝗷𝗮𝗻𝘀
ReversingLabs has uncovered a supply-chain attack involving 19 malicious VS Code extensions.Active since February 2025, the campaign was exposed on December 2 and takes advantage of the trust developers place [...]
FHN 
