🔍 Cybercriminals are increasingly using sophisticated techniques to inject malicious code into the NPM repository. Although the number of malicious packages seemed to decline in 2023–2024, this trend has not continued in 2024. Recently, security researchers identified two NPM packages…
🔍 Cybersecurity experts have discovered a serious vulnerability in the Splunk system. This flaw allows attackers to upload malicious files and execute arbitrary code within the system. Splunk has identified a Remote Code Execution (RCE) vulnerability, CVE-2025-20229, in its Splunk…
Cybersecurity threats continue to escalate, putting the confidential data of companies and organizations at risk. On March 21, 2025, a serious security vulnerability was discovered in CrushFTP, allowing attackers to bypass authentication and gain access to the system through HTTPS…
As virtualization technologies continue to advance, a new security vulnerability—CVE-2025-22230—has been discovered in VMware Tools for Windows. This flaw allows attackers to bypass authentication in a Windows guest virtual machine and gain elevated privileges. CVE-2025-22230 affects VMware Tools for Windows…
A new security vulnerability, CVE-2025-26633, has been discovered in the Microsoft Management Console (MMC), which is being actively exploited by the Russian hacker group Water Gamayun (also known as EncryptHub and Larva-208). This vulnerability allows attackers to bypass Windows security…
🔒 A crucial update for cybersecurity infrastructure! The new version of Security Onion 2.4.140 has been released, focusing on strengthening security monitoring and threat detection. This release includes updates to key tools such as Suricata 7.0.9 and Zeek 7.0.6, along…
On March 24, 2025, Linus Torvalds officially announced the release of Linux Kernel 6.14. This latest stable update of the open-source operating system kernel introduces numerous new features, enhancements, and security updates. It is expected to serve as the foundation…
WordPress is one of the most popular content management systems (CMS) today, with various plugins designed to enhance its security. One such plugin is WP Ghost, which is intended to strengthen website security and has over 200,000 active installations. However,…
WordPress is one of the most popular content management systems (CMS) in the world, used by millions of websites. To enhance its functionality, numerous plugins are available. One such plugin is GamiPress, which adds gamification elements (reward and achievement systems)…
In today’s increasingly complex cybersecurity landscape, every organization’s devices and data are under constant threat. Endpoint Detection and Response (EDR) solutions address this challenge by detecting malicious software, mitigating threats, and enabling rapid response to cyberattacks. By 2025, several advanced…