Cisco Catalyst Center Bug Lets Attackers Gain Higher Access
Cisco has released a warning about a newly discovered high-severity vulnerability (CVE-2025-20341) affecting the Cisco Catalyst Center Virtual Appliance. This flaw allows authenticated remote users to escalate their privileges to [...]
Active Exploits Target Critical FortiWeb WAF Flaw
Fortinet has released an urgent security update for a critical vulnerability in FortiWeb Web Application Firewall (WAF). This flaw is already being used by attackers, so updating your device is [...]
npm Package With 206K Downloads Steals GitHub Tokens
On November 7, Veracode researchers found a dangerous typosquatting attack targeting developers who use GitHub Actions. A fake npm package called “@acitons/artifact” had already reached 206,000 downloads before it was [...]
Lite XL Text Editor Vulnerability Allows Remote Code Execution
A new vulnerability has been discovered in Lite XL, a lightweight open-source text editor, that could let attackers run arbitrary code on affected systems. Researchers from Carnegie Mellon University identified [...]
New Phishing Trick Hits People Who Lost Their iPhones
A new phishing scam is targeting iPhone users who have lost their devices, taking advantage of their hope to recover them. The goal: to steal Apple ID credentials. According to [...]
Get Social