CISA added FileZen CVE-2026-25108 (CVSS 8.7) to its KEV catalog after active exploitation, affecting versions 4.2.1–4.2.8 and 5.0.0–5.0.10.

National CERT Pakistan warns that persistent application security vulnerabilities could expose organizations to cyberattacks, data breaches, and system compromise ...

Cisco has handed security teams one of the largest ever patching workloads affecting its firewall products, including fixes ...

In response to this, the application security SaaS company Indusface has detailed the potential financial impact of SQL Injection attacks on businesses. Additionally, they offer best practices to help ...

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) warns that a Craft CMS remote code execution flaw is being exploited in attacks. The flaw is tracked as CVE-2025-23209 and is a high ...

ZERO-CLICK AI VULNERABILITYALERT! Zenity has detailed "PerplexedComet," a critical zero-click attack vector against the Comet AI browser developed by Perplexity. It enables an indirect prompt ...

Artificial Intelligence is turning out to be the non-negotiable in everyday enterprise infrastructure – AI chatbots in customer service, copilots assisting developers, and many more. LLMs, the ...

Edge bugs are so fetch, and Cisco just patched 50 new ones, including some heavy hitters with 10 out of 10 scores on the CVSS scale.

This high-severity Chrome Gemini vulnerability lets malicious extensions spy on your PC ...

OpenAI has introduced a new cybersecurity-focused AI system called Codex Security. The tool is designed to help organizations detect ...

With cyber attacks becoming more sophisticated, Hong Kong-based Citic Telecom International CPC faced growing pressure to protect its IT assets. Traditional penetration testing, though essential, was ...

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach reports, expert analysis, and actionable insights for infosec professionals and ...