Topics 5

A critical unauthenticated file upload flaw in the TI WooCommerce Wishlist plugin, tracked as CVE-2025-47577, remains unpatched leaving over 100,000 WordPress e-commerce sites exposed...

On 23 October 2024, Google’s Threat Intelligence Group (GTIG) revealed a sophisticated campaign by Chinese state-linked threat actor APT41, leveraging Google Calendar as command-and-control...

Joint cybersecurity initiative with FBI boosts Ivorian agency's technical readiness amid escalating threats From 19 to 23 May 2025, Côte d’Ivoire’s National Agency for the...

A stealth malware campaign leveraging trojanized NSIS installers and advanced in-memory shellcode execution has been tracked by Rapid7 since February 2025. Known as “Winos...

A critical vulnerability tracked as CVE‑2025‑4389 (CVSS 9.8) allows unauthenticated attackers to upload any file type including web‑shells via the crawlomatic_generate_featured_image() hook in Crawlomatic Multipage Scraper Post...

Meta Platforms Inc., the parent company of Facebook and Instagram, is under intense scrutiny in Europe following its announcement to use personal data from...

In an escalating wave of digital deception, the FBI has issued a stark public service announcement (Alert Number: I-051525-PSA, dated May 15, 2025) warning...