Latest Security Advisories

4 december 2025 om 19:41:42

Sha1-Hulud: The Second Coming - Zapier, ENS Domains, and Other Prominent NPM Packages Compromised

stepsecurity.io

4 december 2025 om 18:19:55

CISA warns of Chinese "BrickStorm" malware attacks on VMware servers

bleepingcomputer.com

4 december 2025 om 18:19:55

CISA warns of Chinese "BrickStorm" malware attacks on VMware servers

bleepingcomputer.com

4 december 2025 om 18:19:55

CISA warns of Chinese "BrickStorm" malware attacks on VMware servers

bleepingcomputer.com

4 december 2025 om 17:25:00

Silver Fox Uses Fake Microsoft Teams Installer to Spread ValleyRAT Malware in China

thehackernews.com

4 december 2025 om 17:25:00

Silver Fox Uses Fake Microsoft Teams Installer to Spread ValleyRAT Malware in China

thehackernews.com

4 december 2025 om 17:25:00

Silver Fox Uses Fake Microsoft Teams Installer to Spread ValleyRAT Malware in China

thehackernews.com

4 december 2025 om 15:11:54

Critical React, Next.js flaw lets hackers execute code on servers

bleepingcomputer.com

4 december 2025 om 15:11:54

Critical React, Next.js flaw lets hackers execute code on servers

bleepingcomputer.com

4 december 2025 om 15:11:54

Critical React, Next.js flaw lets hackers execute code on servers

bleepingcomputer.com

4 december 2025 om 12:00:00

MAXHUB Pivot

cisa.gov

4 december 2025 om 12:00:00

SolisCloud Monitoring Platform

cisa.gov

4 december 2025 om 12:00:00

Sunbird DCIM dcTrack and Power IQ

cisa.gov

4 december 2025 om 12:00:00

Johnson Controls OpenBlue Mobile Web Application for OpenBlue Workplace

cisa.gov

4 december 2025 om 12:00:00

MAXHUB Pivot

cisa.gov

4 december 2025 om 12:00:00

MAXHUB Pivot

cisa.gov

4 december 2025 om 12:00:00

MAXHUB Pivot

cisa.gov

4 december 2025 om 12:00:00

MAXHUB Pivot

cisa.gov

4 december 2025 om 12:00:00

Advantech iView

cisa.gov

4 december 2025 om 09:51:32

Critical Remote Code Execution Vulnerabilities Discovered in React Server Components and Next.js

stepsecurity.io

4 december 2025 om 09:51:32

Critical Remote Code Execution Vulnerabilities Discovered in React Server Components and Next.js

stepsecurity.io

4 december 2025 om 09:51:32

Critical Remote Code Execution Vulnerabilities Discovered in React Server Components and Next.js

stepsecurity.io

4 december 2025 om 09:27:00

GoldFactory Hits Southeast Asia with Modified Banking Apps Driving 11,000+ Infections

thehackernews.com

4 december 2025 om 09:27:00

GoldFactory Hits Southeast Asia with Modified Banking Apps Driving 11,000+ Infections

thehackernews.com

4 december 2025 om 09:27:00

GoldFactory Hits Southeast Asia with Modified Banking Apps Driving 11,000+ Infections

thehackernews.com

4 december 2025 om 06:52:00

Record 29.7 Tbps DDoS Attack Linked to AISURU Botnet with up to 4 Million Infected Hosts

thehackernews.com

4 december 2025 om 06:52:00

Record 29.7 Tbps DDoS Attack Linked to AISURU Botnet with up to 4 Million Infected Hosts

thehackernews.com

4 december 2025 om 06:52:00

Record 29.7 Tbps DDoS Attack Linked to AISURU Botnet with up to 4 Million Infected Hosts

thehackernews.com

3 december 2025 om 22:32:56

Critical Security Vulnerability in React Server Components

socket.dev

3 december 2025 om 22:06:07

Marquis data breach impacts over 74 US banks, credit unions

bleepingcomputer.com

3 december 2025 om 22:06:07

Marquis data breach impacts over 74 US banks, credit unions

bleepingcomputer.com

3 december 2025 om 22:06:07

Marquis data breach impacts over 74 US banks, credit unions

bleepingcomputer.com

3 december 2025 om 21:31:20

Critical flaw in WordPress add-on for Elementor exploited in attacks

bleepingcomputer.com

3 december 2025 om 21:31:20

Critical flaw in WordPress add-on for Elementor exploited in attacks

bleepingcomputer.com

3 december 2025 om 21:31:20

Critical flaw in WordPress add-on for Elementor exploited in attacks

bleepingcomputer.com

3 december 2025 om 20:59:18

Critical Remote Code Execution Vulnerabilities Discovered in React Server Components and Next.js

stepsecurity.io

3 december 2025 om 20:11:57

Kwetsbaarheden verholpen in React Server Components

ncsc.nl

3 december 2025 om 18:19:00

Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution

thehackernews.com

3 december 2025 om 17:46:36

Microsoft Silently Patches Windows LNK Flaw After Years of Active Exploitation

thehackernews.com

3 december 2025 om 17:24:49

How Harden Runner Detected the Sha1-Hulud Supply Chain Attack in CNCF's Backstage Repository

stepsecurity.io

3 december 2025 om 17:08:00

WordPress King Addons Flaw Under Active Attack Lets Hackers Make Admin Accounts

thehackernews.com

3 december 2025 om 16:45:30

Microsoft "mitigates" Windows LNK flaw exploited as zero-day

bleepingcomputer.com

3 december 2025 om 15:57:17

Critical Vulnerabilities in React and Next.js: everything you need to know

wiz.io

3 december 2025 om 15:32:00

Brazil Hit by Banking Trojan Spread via WhatsApp Worm and RelayNFC NFC Relay Fraud

thehackernews.com

3 december 2025 om 15:05:15

Deep dive into DragonForce ransomware and its Scattered Spider connection

bleepingcomputer.com

3 december 2025 om 14:01:04

Aisuru botnet behind new record-breaking 29.7 Tbps DDoS attack

bleepingcomputer.com

3 december 2025 om 13:23:10

University of Phoenix discloses data breach after Oracle hack

bleepingcomputer.com

3 december 2025 om 09:30:00

Picklescan Bugs Allow Malicious PyTorch Models to Evade Scans and Execute Code

thehackernews.com

3 december 2025 om 08:39:00

Malicious Rust Crate Delivers OS-Specific Malware to Web3 Developer Systems

thehackernews.com

3 december 2025 om 00:00:00

OpenPLC ScadaBR Unrestricted Upload of File with Dangerous Type Vulnerability

cisa.gov

2 december 2025 om 22:09:46

Malicious Rust Crate evm-units Serves Cross-Platform Payloads for Silent Execution

socket.dev

2 december 2025 om 19:06:20

Shai-Hulud 2.0 NPM malware attack exposed up to 400,000 dev secrets

bleepingcomputer.com

2 december 2025 om 16:10:06

Microsoft Defender portal outage disrupts threat hunting alerts

bleepingcomputer.com

2 december 2025 om 15:39:13

Sha1-Hulud: The Second Coming - Zapier, ENS Domains, and Other Prominent NPM Packages Compromised

stepsecurity.io

2 december 2025 om 15:02:00

Researchers Capture Lazarus APT's Remote-Worker Scheme Live on Camera

thehackernews.com

2 december 2025 om 15:01:00

GlassWorm Returns with 24 Malicious Extensions Impersonating Popular Developer Tools

thehackernews.com

2 december 2025 om 14:17:00

Malicious npm Package Uses Hidden Prompt and Script to Evade AI Security Tools

thehackernews.com

2 december 2025 om 12:00:00

Iskra iHUB and iHUB Lite

cisa.gov

2 december 2025 om 00:00:00

Android Framework Information Disclosure Vulnerability

cisa.gov

2 december 2025 om 00:00:00

Android Framework Privilege Escalation Vulnerability

cisa.gov

27 november 2025 om 07:03:00

Gainsight Expands Impacted Customer List Following Salesforce Security Alert

thehackernews.com

25 november 2025 om 12:00:00

Rockwell Automation Arena Simulation

cisa.gov

25 november 2025 om 12:00:00

Rockwell Automation Arena Simulation

cisa.gov

25 november 2025 om 12:00:00

Rockwell Automation Arena Simulation

cisa.gov

23 november 2025 om 12:53:12

Shai-Hulud: Self-Replicating Worm Compromises 500+ NPM Packages

stepsecurity.io