KeyPlug Server Leak Reveals Fortinet Exploits
Cybersecurity researchers recently uncovered a server linked to the KeyPlug malware, used by the threat group RedGolf (also known as APT41). The server was accidentally exposed for less than 24 [...]
AnythingLLM Systems at Risk: Critical Remote Code Execution Vulnerability Discovered
A major security flaw (CVE-2024-13059) was found in the open-source AI tool AnythingLLM. Discovered in February 2025, the bug lets attackers with admin access run harmful code remotely, putting systems [...]
Server-Side Phishing Targets Portals for Logins
Attackers are now using server-side phishing to target employee and member login portals, making it harder to detect and analyze their tactics. Phishing Tactics Are Evolving Recent investigations reveal a [...]
Two Apple Zero-Days Under Active iOS Attack
Apple has released iOS 18.4.1 and iPadOS 18.4.1 to fix two zero-day vulnerabilities that were actively exploited in highly targeted and sophisticated attacks. Vulnerabilities Explained The issues were found in [...]
Critical Chrome Flaw Allowed Data Theft & Unauthorized Access
Google has released an urgent security update for its Chrome browser after two critical vulnerabilities were found, putting users at risk of data theft and unauthorized access. These vulnerabilities, labeled [...]
Get Social