New updates have been released for FreePBX, an open-source VoIP phone system managent platform. These updates include a critical security fix addressing a recently discovered vulnerability impacting certain configurations where the admin interface was exposed to the internet, and could have potentially allowed unauthorized access or control. This vulnerability, tracked as CVE-2025-57819, specifically affects the…

Continue Reading

Hewlett Packard Enterprise (HPE) has released wa series of important security updates across its product range, addressing multiple vulnerabilities, including some with critical and high severity rating. Among the fixes are for the HP-UX PAM RADIUS component, versions 11i v3 prior to A.03.00.00. Multiple security issues could allow attackers to execute malicious code remotely or…

Continue Reading

Citrix has issued an urgent security bulletin regarding multiple vulnerabilities affecting its NetScaler ADC and Gateway products. These flaws pose serious risks, including remote code execution, denial of service, and unauthorized access to management interfaces. Organizations utilizing affected versions should prioritize immediate action to mitigate potential exploits. Three key vulnerabilities have been identified: The vulnerabilities…

Continue Reading

As generative AI tools like ChatGPT, Claude, and Google Gemini become increasingly embedded in enterprise workflows, organizations face mounting challenges around managing and securing these powerful platforms. To address these concerns, Cloudflare has announced new capabilities within its Cloud Access Security Broker (CASB) feature, part of its Cloudflare One platform, aimed at providing deeper visibility…

Continue Reading

Recent findings from Trail of Bits highlight an unexpected vulnerability in many AI systems that process images. The core issue? When these systems downscale large images to save resources, attackers can craft images that hide malicious prompts or data, which only reveal themselves after the resizing—potentially leading to data leaks or system manipulation. Understanding the…

Continue Reading

Docker has recently announced the release of Docker Desktop version 4.44.3, which includes important security fixes and bug improvements including for Docker Desktop on Windows, Mac, or Linux. The most significant update in this release addresses a critical vulnerability identified as CVE-2025-9074 (with a critical score of 9.3 out of 10). Prior to this fix,…

Continue Reading

As quantum computing advances, efforts to develop and deploy quantum-resistant cryptography are gaining momentum worldwide. While scalable quantum systems are not yet in operation, organizations are actively preparing for a future where current cryptographic protocols could be vulnerable. Microsoft has been instrumental in the development of quantum-safe security. The company has contributed to the creation…

Continue Reading