A critical vulnerability tracked as CVE 2026 0625 is being actively exploited in legacy D Link DSL routers, allowing unauthenticated remote code execution and DNS hijacking on end of life devices.
Federal government forms NCICS to enhance security of critical information infrastructure, assess vulnerabilities, and develop a robust cybersecurity framework for federal ministries and organisations.
Researchers discovered that phone numbers of more than 3.5 billion WhatsApp users, along with profile photos and status text for many accounts, could be collected without hacking due to long standing platform design issues.
An unprotected Foodpanda Pakistan API exposed sensitive restaurant owner information, including contact details, location, and performance metrics, raising concerns over vendor data security.
NCERT has issued an urgent advisory warning about multiple high-severity vulnerabilities in VMware products that could let attackers take full control of enterprise and cloud systems if left unpatched.
Google has issued its second emergency Chrome security update in a week to fix a critical flaw in the V8 JavaScript engine, warning users to update immediately across all platforms.
Pakistan’s NCERT has issued a red alert over multiple zero-day SAP NetWeaver vulnerabilities, including CVE-2025-42944, urging immediate patching to prevent ransomware and system-wide compromise.
NASA acknowledges Pakistani security researcher Ali Raza for responsibly reporting a critical vulnerability under its Vulnerability Disclosure Policy, enhancing the integrity of its systems.
Jazz and NADRA Technologies Limited sign MoU for digital services and identity verification, but experts warn privacy and data security risks loom amid Pakistan’s ongoing data leak crisis.
Microsoft identifies active attacks on on-premises SharePoint Server exploiting CVE-2025-53770, a variant of CVE-2025-49706, and shares mitigation guidance while working on a patch.
