ArrayOS AG VPN Flaw Exploited for Webshell Attacks
A critical command injection vulnerability in Array Networks’ ArrayOS AG systems is being actively exploited, with confirmed attacks on Japanese organizations since August 2025. According to JPCERT/CC, attackers are using [...]
BRICKSTORM Malware Targeting ESXi and Windows
Three major cyber agencies — CISA, NSA, and the Canadian Cyber Centre — have issued a new alert about a powerful malware called BRICKSTORM. They say this threat comes from [...]
Calendly-Themed Scam Aims at Google Workspace Credentials
A new phishing campaign has been uncovered using fake Calendly pages to steal credentials from Google Workspace and Facebook Business users. Push Security analyzed the operation and found that the [...]
Chrome 143 Update Patches 13 Vulnerabilities Allowing Code Execution
Google has released Chrome 143 to the Stable channel, with version 143.0.7499.40 now available for Linux and 143.0.7499.40/41 for Windows and Mac. This update fixes 13 security vulnerabilities, including several [...]
Apache Struts Bug Allows Disk Exhaustion Attacks
A newly disclosed security flaw in Apache Struts could let attackers trigger disk exhaustion attacks, potentially making affected servers slow, unstable, or completely unusable. How the Vulnerability Works Researchers found [...]
Get Social