Vulnerabilities

Medusa Ransomware

China-Linked Storm-1175 Exploits Zero-Day Flaws to Rapidly Deploy Medusa Ransomware Attacks

A cyber threat group associated with China, identified as Storm-1175, has been observed conducting rapid and highly coordinated cyberattacks by exploiting both undisclosed (zero-day) and known (N-day) vulnerabilities. The group is primarily focused on deploying Medusa ransomware across compromised systems. Security researchers from Microsoft Threat Intelligence report that the attackers are capable of executing high-speed intrusions, often breaching systems within […]

China-Linked Storm-1175 Exploits Zero-Day Flaws to Rapidly Deploy Medusa Ransomware Attacks Read More »

Vertex AI Vulnerability Exposes Sensitive Google Cloud Data and Private Artifacts

A newly identified security weakness in Google Vertex AI has raised serious concerns about potential data exposure and cloud infrastructure compromise. Security researchers have revealed that artificial intelligence agents operating within the platform could be manipulated to access sensitive information without authorization. Misconfigured Permissions Create a Hidden Risk The issue stems from how permission controls are implemented

Vertex AI Vulnerability Exposes Sensitive Google Cloud Data and Private Artifacts Read More »

OpenAI Fixes ChatGPT Data Exfiltration Flaw and Codex Vulnerability Exposing GitHub Tokens

A critical security issue affecting AI systems has been resolved after researchers discovered vulnerabilities in ChatGPT and Codex that could have exposed sensitive user data and developer credentials. ChatGPT Flaw Enabled Covert Data Exfiltration Researchers from Check Point uncovered a previously unknown weakness in ChatGPT that allowed hidden data exfiltration without user awareness. The flaw made it possible for

OpenAI Fixes ChatGPT Data Exfiltration Flaw and Codex Vulnerability Exposing GitHub Tokens Read More »

Three China-Linked Threat Clusters Launch Coordinated Cyber Campaign Against Southeast Asian Government in 2025

A coordinated cyber espionage campaign involving three China-aligned threat clusters has targeted a Southeast Asian government organization throughout 2025, deploying sophisticated malware and backdoor tools. Multiple Threat Clusters Identified The activity has been traced to the following clusters: Palo Alto Networks Unit 42 researchers Palo Alto Networks Unit 42 noted, “The overlapping tactics, techniques, and procedures suggest

Three China-Linked Threat Clusters Launch Coordinated Cyber Campaign Against Southeast Asian Government in 2025 Read More »

Citrix NetScaler Faces Active Reconnaissance for CVE-2026-3055 High-Severity Memory Overread Vulnerability

A newly disclosed high-risk vulnerability affecting Citrix NetScaler ADC and NetScaler Gateway is already drawing attention from threat actors, with security firms reporting active reconnaissance activity targeting exposed systems. Critical Memory Overread Vulnerability Identified The flaw, tracked as CVE-2026-3055, has been assigned a CVSS score of 9.3, highlighting its severity. This issue stems from improper input

Citrix NetScaler Faces Active Reconnaissance for CVE-2026-3055 High-Severity Memory Overread Vulnerability Read More »

CISA Adds CVE-2025-53521 to KEV List Following Active Exploitation of F5 BIG-IP APM

The U.S. cybersecurity authority, Cybersecurity and Infrastructure Security Agency (CISA), has officially added a high-severity vulnerability affecting F5 BIG-IP Access Policy Manager (APM) to its Known Exploited Vulnerabilities (KEV) catalog after confirming real-world attacks. Critical Vulnerability Escalates to Remote Code Execution The flaw, tracked as CVE-2025-53521, carries a CVSS v4 score of 9.3 and allows attackers to

CISA Adds CVE-2025-53521 to KEV List Following Active Exploitation of F5 BIG-IP APM Read More »

Critical Flaws in LangChain and LangGraph Expose Files, Secrets, and Databases

Security researchers have uncovered serious vulnerabilities in widely used artificial intelligence frameworks, exposing enterprise systems to potential data breaches. The affected platforms, LangChain and LangGraph, are commonly used to build applications powered by large language models, making the impact both widespread and significant. Massive Adoption Increases Risk Exposure Both frameworks are deeply embedded in modern AI development environments.

Critical Flaws in LangChain and LangGraph Expose Files, Secrets, and Databases Read More »

Claude Extension Vulnerability Allowed Zero Click XSS and Prompt Injection via Any Website

Cybersecurity researchers have uncovered a serious security flaw in Claude’s Google Chrome extension that allowed attackers to inject malicious prompts without any user interaction. The vulnerability made it possible for a simple website visit to silently manipulate the AI assistant’s behavior. How the Zero-Click Attack Worked According to researchers at Koi Security, the flaw allowed any website

Claude Extension Vulnerability Allowed Zero Click XSS and Prompt Injection via Any Website Read More »

Citrix Urges Immediate Patching of Critical NetScaler Flaw Allowing Unauthenticated Data Leaks

Citrix has released critical security updates to address serious vulnerabilities in its NetScaler ADC and NetScaler Gateway products, warning organizations about the potential risk of sensitive data exposure. The update includes fixes for two security flaws, one of which could allow attackers to access sensitive information without authentication, raising concerns across enterprise environments. Critical Vulnerability

Citrix Urges Immediate Patching of Critical NetScaler Flaw Allowing Unauthenticated Data Leaks Read More »

Hackers Exploit CVE-2025-32975 CVSS 10.0 to Take Over Unpatched Quest KACE SMA Systems

Cybersecurity researchers have identified active exploitation of a critical security flaw affecting Quest KACE Systems Management Appliance (SMA), raising serious concerns for organizations relying on the platform. According to recent findings from Arctic Wolf, suspicious activity linked to this vulnerability began emerging during the week of March 9, 2026. The attacks specifically target SMA systems

Hackers Exploit CVE-2025-32975 CVSS 10.0 to Take Over Unpatched Quest KACE SMA Systems Read More »