CVE-2025-6543 in Citrix NetScaler exploited in stealth attacks on Dutch critical systems. NCSC urges deeper investigation beyond patching.

Xerox Corporation has issued urgent security updates addressing two high-impact vulnerabilities in its FreeFlow Core software. The flaws, now tracked as CVE-2025-8355 and CVE-2025-8356, have the ...

BadCam shows how Linux webcams can be hijacked into BadUSB tools, keystroke injection, and persistent system compromise.

A new zero-day vulnerability in WinRAR (CVE-2025-8088) is being exploited in the wild by the Russia-aligned hacking group RomCom, according to newly published research from ESET. The flaw, silently ...

Microsoft has issued a warning about active cyberattacks targeting on-premises SharePoint servers widely used by government agencies and businesses. The cyberattacks exploit a zero-day vulnerability ...

RedHook is a new Android banking trojan using phishing and RAT tools to target Vietnamese users while evading antivirus detection.

To fight against cybercrime, Japan’s National Police Agency (NPA) has released a free decryption tool for victims of the Phobos and 8Base ransomware variants. The decryptor, made publicly available in ...

UAP data breach confirmed (Source: United Australia Party) Sensitive information potentially affected includes names, email addresses, phone numbers, banking and identity documents, employment ...

A cyberattack on KNP Logistics has forced the closure of the 158‑year‑old UK transport company, leaving approximately 700 staff without ...

4-Year Investigation Leads to Arrest of Alleged XSS Cybercrime Forum Admin The Russian-speaking cybercrime platform had more than 50,000 registered users and acted as a marketplace for siphoned data, ...

Here’s how NCSC vulnerability research and the VRI strengthen UK cybersecurity through collaboration with experts, and the UK government.

CVE-2025-6043 in Malcure Malware Scanner allows subscriber file deletion. No patch yet; site owners should disable or replace the plugin.