Cybersecurity news without the noise

All Posts

CVE-2025-4528: Remote Code Execution Vulnerability in Dígitro NGC Explorer
vulnerability·research·
May 11, 2025
CVE-2025-4528 represents a medium severity vulnerability affecting Dígitro NGC Explorer up to version 3.44.15, stemming from insufficient session expiration.
DragonForce Ransomware Gang: Affiliate Model, Tactics, and Global Impact
malware·cyber-attack·
May 6, 2025
DragonForce, a ransomware group with hacktivist origins in Malaysia, has evolved into a major global threat using a distributed affiliate model and multi-extortion tactics.
CVE-2024-7399 Actively Exploited Samsung MagicINFO Critical Write Flaw
vulnerability·exploit·
May 6, 2025
CVE-2024-7399, a critical arbitrary file write vulnerability in Samsung MagicINFO 9 Server, is now confirmed as actively exploited in the wild.
TeleMessage SGNL Hack Exposes Government and Financial Data
data-breach·cyber-attack·
May 6, 2025
A breach at TeleMessage, provider of a Signal-based messaging archiver used by U.S. government agencies and major financial institutions, exposed sensitive group chats, contact information, and backend credentials.
"AirBorne" AirPlay Zero-Click Wormable RCE Vulnerability Threatens Billions of Apple Devices
exploit·vulnerability·
May 5, 2025
Oligo Security has uncovered 23 vulnerabilities, dubbed “AirBorne, in Apple’s AirPlay protocol and SDK.