Critical Security Flaws In Workflow Automation Tool Put Pakistani Businesses At Risk
CERT warns of critical vulnerabilities in a widely used workflow automation tool that could allow hackers to take control of business systems in Pakistan.
Linux Vulnerability Exploitation Surges In Q4 2025 According To Kaspersky
Kaspersky reports a sharp increase in Linux attacks during Q4 2025, driven by exploitation of legacy flaws and growing desktop adoption, with archiver vulnerabilities also heavily targeted.
Microsoft Releases January 2026 Security Update Addressing 114 Vulnerabilities Including Actively Exploited Flaw
Microsoft’s first security update of 2026 patches 114 vulnerabilities, including an actively exploited Desktop Window Manager flaw, while other vendors also release updates to address critical security issues.
Attack Surface Management ROI Challenged By Focus On Asset Counts Over Risk
Experts highlight that attack surface management often increases visibility without reducing risk, urging organizations to measure exposure duration, ownership, and resolution speed for meaningful ROI.
RondoDox Botnet Exploits React2Shell Vulnerability Targeting IoT And Web Applications
Cybersecurity researchers report a nine-month-long RondoDox botnet campaign exploiting React2Shell vulnerability in Next.js and IoT devices, with thousands of systems at risk globally.
Google Releases Chrome Security Update After Active Exploitation Of ANGLE Buffer Flaw
Google issues Chrome security updates to fix three vulnerabilities, including a high severity ANGLE buffer flaw under active exploitation, urging users of Chrome and Chromium based browsers to update immediately.
National CERT Warns Government And Military Institutions About Oracle EBS Vulnerability
National CERT has issued an urgent warning regarding a critical Oracle E-Business Suite vulnerability, urging government and military organizations to apply security patches and implement protective measures.
WhatsApp Exposure Allowed Collection Of 3.5 Billion User Phone Numbers
Researchers discovered that phone numbers of more than 3.5 billion WhatsApp users, along with profile photos and status text for many accounts, could be collected without hacking due to long standing platform design issues.
NCERT Warns of Critical VMware Vulnerabilities Allowing System Takeover
NCERT has issued an urgent advisory warning about multiple high-severity vulnerabilities in VMware products that could let attackers take full control of enterprise and cloud systems if left unpatched.
FTO Discloses FBR IT System Under Cybercriminal Control
Federal Tax Ombudsman (FTO) has revealed that FBR’s entire IT system is under the control of cybercriminals, exposing severe vulnerabilities and insider risks within PRAL.
