Executive summary (TL;DR) A command-injection vulnerability has been disclosed in Fortinet’s FortiDDoS-F appliances. It is tracked as CVE-2024-45325 and affects certain 7.0.x releases of FortiDDoS-F; Fortinet has published PSIRT guidance...

 On September 9, 2025, Microsoft disclosed two new vulnerabilities in Windows BitLocker, its widely used full-disk encryption technology. Both flaws have been classified as “Important” and...

September 2025 – Elastic confirmed that it was affected by a third-party security incident originating from a breach in the Salesloft Drift platform. Although Elastic’s core...

A targeted phishing campaign hit employees tied to a major Kazakh oil company — using convincing internal lures, ZIP + LNK droppers, PowerShell staging and a...

September 2025 – A newly uncovered cyber-espionage campaign reveals just how far nation-state attackers are pushing stealth and persistence. Researchers have attributed the operation to a...

Bareilly, Uttar Pradesh — In a major crackdown, local law enforcement has exposed an elaborate forgery racket operating under the guise of a public service centre....

Indian government and defence agencies are once again in the crosshairs of Pakistan-linked threat actors. Security researchers have uncovered a new wave of espionage campaigns designed...

Security researchers have uncovered a critical set of vulnerabilities in LG’s WebOS operating system for smart televisions. These flaws allow attackers on the same local network—or...

Security teams have observed a recent campaign in which threat actors linked to Chinese state interests exploited vulnerable servers in Taiwan using a combination of well-known...