Fortinet has revealed a critical zero-day remote code execution vulnerability, CVE-2025-32756, that is actively exploited by attackers to compromise multiple Fortinet products, including FortiVoice and FortiOS.
The US Cybersecurity and Infrastructure Security Agency has halted its plans to revamp its public cybersecurity advisory system amid significant concerns from the information security community regarding transparency and accessibility.
The FreeDrain phishing campaign exploits digital wallet vulnerabilities to deceive cryptocurrency users into revealing sensitive information, resulting in significant financial losses exceeding $9 million.
The Sender Policy Framework (SPF) is a crucial email authentication protocol that helps prevent spoofing and phishing by specifying authorized IP addresses for sending emails on behalf of a domain.
DieNet, a hacktivist group, has executed more than 60 DDoS attacks targeting essential services in the U.S. and Iraq, utilizing various attack vectors to create disruptions with minimal downtime.
A sophisticated criminal proxy network based in Turkey has been exploiting outdated IoT and end-of-life devices for over a year, leading to recent indictments of four foreign nationals involved in the operation.
