Uncategorized
Fortinet Releases Security Advisory for Relative Path Traversal Vulnerability Affecting FortiWeb Products
CISA is aware of exploitation of a newly disclosed vulnerability, CVE-2025-64446, in Fortinet FortiWeb, a web application firewall. Thi...
Amazon Detects 150,000 NPM Packages in Worm-Powered Campaign
A financially motivated threat actor automated the package publishing process in a coordinated tea.xyz token farming campaign.
The post...
Ransomware’s Fragmentation Reaches a Breaking Point While LockBit Returns
Key Takeaways:
85 active ransomware and extortion groups observed in Q3 2025, reflecting the most decentralized ransomware ecosystem to...
Chinese Hackers Use Anthropic’s AI to Launch Automated Cyber Espionage Campaign
State-sponsored threat actors from China used artificial intelligence (AI) technology developed by Anthropic to orchestrate automated c...
Imunify360 Vulnerability Could Expose Millions of Sites to Hacking
A vulnerability in ImunifyAV can be exploited for arbitrary code execution by uploading a malicious file to shared servers.
The post Im...
Fortinet FortiWeb Flaw Actively Exploited in the Wild Before Company’s Silent Patch
Cybersecurity researchers are sounding the alert about an authentication bypass vulnerability in Fortinet Fortiweb WAF that could allow...
Anthropic Says Claude AI Powered 90% of Chinese Espionage Campaign
A state-sponsored threat actor manipulated Claude Code to execute cyberattacks on roughly 30 organizations worldwide.
The post Anthropi...
Google Says Chinese ‘Lighthouse’ Phishing Kit Disrupted Following Lawsuit
The cybercriminals informed customers that their cloud server was shut down due to complaints.
The post Google Says Chinese ‘Lighthouse...
Cybersecurity Information Sharing Act of 2015 Reauthorized Through January 2026
The Cybersecurity Information Sharing Act of 2015 (“CISA 2015”), which provides protections for sharing cybersecurity threat informatio...