Cybersecurity experts have raised alarms over a newly uncovered vulnerability affecting Apache Struts, a widely used framework in enterprise applications. This flaw, tracked as CVE-2024-53677, enables threat actors to execute remote code, posing significant risks to organizations utilizing vulnerable versions. With a CVSS severity score of 9.5 out of 10,…
New Malware Threat “WhisperGate” Targets Ukrainian Entities Amid Geopolitical Tensions On Saturday, cybersecurity experts from Microsoft revealed the emergence of a new malware operation identified as “WhisperGate.” This sophisticated form of malware is primarily aimed at government entities, non-profits, and IT organizations within Ukraine, amid escalating geopolitical tensions with Russia.…
F5 Networks Faces Security Concerns Amid Reports of Compromise In a troubling development for cybersecurity, F5 Networks has reported that its BIG-IP appliances, crucial for load balancing and data encryption at the network edge, may have been compromised. These devices are positioned strategically within networks, enabling them to facilitate traffic…
Endpoint Security, Hardware / Chip-level Security Eclypsium Uncovers UEFI Vulnerability in Framework Laptops and Desktops Pooja Tikekar (@PoojaTikekar) • October 15, 2025 Image: Shutterstock Security researchers from Eclypsium have identified a critical firmware weakness in approximately 200,000 laptops and desktops manufactured by the modular company Framework. This vulnerability…
Listen to the article 4 min This audio is auto-generated. Please let us know if you have feedback. On Wednesday, F5 Inc., a prominent enterprise technology vendor recognized for its application security and data delivery products, disclosed a security breach attributed to a nation-state actor. The attackers gained access to…
Fortinet has recently issued a critical advisory regarding a significant security vulnerability affecting its Wireless LAN Manager, FortiWLM, which has been patched. This flaw has the potential to expose sensitive information and affects various versions of the FortiWLM software. The vulnerability, classified as CVE-2023-34990, has been assigned a high severity…
The Ukrainian government has officially accused Russia of orchestrating a series of cyberattacks that targeted various public institutions and governmental websites over the past week. According to the Ministry of Digital Transformation, the evidence strongly indicates Russian involvement in this incident. The Ministry stated, “All evidence points to the fact…
In recent years, an alarming trend of romance and investment scams—colloquially termed “pig butchering”—has resulted in the theft of tens of billions of dollars from individuals globally. Law enforcement agencies have recently intensified their efforts against this expansive scam network, specifically targeting the operations of human trafficking victims forced to…
The challenge of safeguarding digital secrets in an increasingly interconnected world has become increasingly urgent. GitGuardian’s engineers faced a critical task while developing their HasMySecretLeaked service, designed to assist developers in determining whether confidential information—such as passwords, API keys, and cryptographic certificates—has been inadvertently exposed within public GitHub repositories. The…
