CISA has added critical Broadcom and Commvault vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog after evidence of active exploitation, urging immediate remediation.
All Posts
- Over 30 leading cybersecurity experts and academics have issued a public letter condemning former President Trump’s executive order revoking security clearances for Chris Krebs and SentinelOne, warning of chilling effects on independent security research and industry-government trust.
- Kali Linux users must manually install a new archive signing key to restore secure updates after the previous key was lost. Failure to act will break package management for all users.
- North Korean state-sponsored hackers are targeting job seekers and cryptocurrency firms with sophisticated malware campaigns. Attackers use fake recruiters, trojanized job interviews, and malicious crypto apps to steal credentials, deploy backdoors, and exfiltrate digital assets. This post details the latest campaign techniques, malware families, and actionable defense recommendations.
- SAP has released an emergency patch for CVE-2025-31324, a critical zero-day vulnerability in SAP NetWeaver Visual Composer, after evidence of active exploitation in the wild. Organizations are urged to apply the patch immediately to prevent full system compromise.