HomeTopics 1Application Security

Application Security

Threat Analysis: Chinese Threat Actor Exploits Critical SAP Vulnerability (CVE-2025-31324) in the Wild

Exploiting the Kernel: How Play Ransomware Leveraged a Windows Zero-Day for Privilege Escalation

Application Security

Securing Kubernetes: Understanding and Mitigating Threats to Containerized Environments

Application Security

Critical SAP NetWeaver Vulnerability Uncovered: How ReliaQuest Exposed CVE-2025-31324 and What It Means for Enterprises

A Looming Threat to Critical Business Systems. On April 22, 2025, cybersecurity firm ReliaQuest revealed an active exploitation campaign targeting SAP NetWeaver, the backbone...

Application Security

CVE-2025-2636: Critical Local File Inclusion Flaw in InstaWP Connect Plugin Puts 500K+ WordPress Sites at Risk

A critical vulnerability in InstaWP Connect, a popular WordPress plugin with over 500,000 active installations, has exposed millions of websites to remote code execution...

Advanced Persistent Threat

Trojanized Messaging Apps and Budget Android Devices: A Perfect Storm for Cryptocurrency Theft

In an era where digital communication and cryptocurrency transactions are ubiquitous, the security of our devices and applications is paramount. Recent investigations have uncovered...

Advanced Persistent Threat

Gleaming Pisces Exploits Python Ecosystem to Deliver PondRAT Malware Targeting Developers

A new cyber threat has emerged, targeting software developers through malicious Python packages. The North Korea-linked advanced persistent threat (APT) group known as Gleaming...

Application Security

Palo Alto Networks Alerts: Brute-Force Assaults on PAN-OS GlobalProtect Gateways Signal Heightened Threat Landscape

In a stark reminder of the evolving threat landscape, Palo Alto Networks has recently reported a surge in brute-force login attempts targeting PAN-OS GlobalProtect...

Application Security

100,000+ WordPress Sites at Risk: Administrative User Creation Vulnerability in SureTriggers Plugin Exposes Critical Weakness

A critical vulnerability has been identified in the popular SureTriggers WordPress plugin, affecting over 100,000 active installations. This vulnerability enables unauthenticated attackers to create...

Application Security

VMSA-2025-0005: Critical Authentication Bypass in VMware Tools for Windows (CVE-2025-22230) Demands Urgent Patching

On March 25, 2025, VMware (a Broadcom subsidiary) issued VMSA-2025-0005, disclosing a high-severity authentication bypass vulnerability (CVE-2025-22230) in VMware Tools for Windows. With a...

12 3...12 Page 1 of 12

- Never miss a story with notifications

- Gain full access to our premium content

- Browse free from up to 5 devices at once

Must read

AI & Cybersecurity

Meta’s Q1 2025 Integrity Reports Reveal Spike in Bullying Content, Rise in Global CyberTips, and New AI Moderation Tools

Cybercriminals Camouflage Malware as AI Tools in Sophisticated New Campaign

Victoria’s Secret Hit by Security Incident: Website, Email, and Operations Disrupted

Unpatched Zero-Day in TI WooCommerce Wishlist Plugin Exposes Over 100K Sites to RCE Risk

Meta’s Q1 2025 Integrity Reports Reveal Spike in Bullying Content, Rise in Global CyberTips, and New AI Moderation Tools

Cybercriminals Camouflage Malware as AI Tools in Sophisticated New Campaign

Victoria’s Secret Hit by Security Incident: Website, Email, and Operations Disrupted

Unpatched Zero-Day in TI WooCommerce Wishlist Plugin Exposes Over 100K Sites to RCE Risk

Application Security

Threat Analysis: Chinese Threat Actor Exploits Critical SAP Vulnerability (CVE-2025-31324) in the Wild

Exploiting the Kernel: How Play Ransomware Leveraged a Windows Zero-Day for Privilege Escalation

Securing Kubernetes: Understanding and Mitigating Threats to Containerized Environments

Meta’s Q1 2025 Integrity Reports Reveal Spike in Bullying Content, Rise in Global CyberTips, and New AI Moderation Tools

Cybercriminals Camouflage Malware as AI Tools in Sophisticated New Campaign

Victoria’s Secret Hit by Security Incident: Website, Email, and Operations Disrupted

Unpatched Zero-Day in TI WooCommerce Wishlist Plugin Exposes Over 100K Sites to RCE Risk

Meta’s Q1 2025 Integrity Reports Reveal Spike in Bullying Content, Rise in Global CyberTips, and New AI Moderation Tools

Cybercriminals Camouflage Malware as AI Tools in Sophisticated New Campaign

Victoria’s Secret Hit by Security Incident: Website, Email, and Operations Disrupted

Unpatched Zero-Day in TI WooCommerce Wishlist Plugin Exposes Over 100K Sites to RCE Risk

Cybercory Magazine

Latest

Meta’s Q1 2025 Integrity Reports Reveal Spike in Bullying Content, Rise in Global CyberTips, and New AI Moderation Tools

Cybercriminals Camouflage Malware as AI Tools in Sophisticated New Campaign

Victoria’s Secret Hit by Security Incident: Website, Email, and Operations Disrupted

Popular

Meta’s Q1 2025 Integrity Reports Reveal Spike in Bullying Content, Rise in Global CyberTips, and New AI Moderation Tools

Cybercriminals Camouflage Malware as AI Tools in Sophisticated New Campaign

Victoria’s Secret Hit by Security Incident: Website, Email, and Operations Disrupted

Useful Links

Quick Links