A hacker group named Rose87168 claimed responsibility for breaching Oracle Cloud’s federated SSO servers, compromising approximately 6 million user records and exposing sensitive data due to a zero-day vulnerability.
Two severe security flaws, CVE-2025-2007 and CVE-2025-2008, in the WP Ultimate CSV Importer plugin for WordPress could expose around 20,000 websites to remote code execution and file deletion attacks.
Web Application Firewalls (WAFs) are critical security tools that monitor and block malicious traffic to safeguard web applications from vulnerabilities such as SQL injections and cross-site scripting.
US authorities have seized over $8.2 million in Tether (USDT) linked to romance baiting scams, highlighting the effectiveness of advanced tracing tools and legal measures in combating financial fraud.
A recent study reveals that 50% of employees use unsanctioned AI tools, highlighting the need for organizations to develop comprehensive strategies to manage associated risks while leveraging potential benefits.
The UK’s National Cyber Security Centre has alerted users to a severe authorization bypass vulnerability in Next.js that allows unauthorized access to sensitive resources, with active exploitation reported.
