Adobe has released a series of important security updates this week, addressing multiple vulnerabilities that could expose systems to serious risks, including arbitrary code execution, application crashes, and memory leaks. Some of these flaws are particularly severe, and their CVE scores above 9 highlight just how critical it is to update as soon as possible.…

Continue Reading

Microsoft’s July 2025 Patch Tuesday delivers essential security updates that address numerous vulnerabilities across Windows, Office, Azure, and other Microsoft services. This month’s release includes several high-severity flaws, many of which could allow remote code execution, privilege escalation, or information disclosure. It is crucial for organizations and users to review these updates and apply them…

Continue Reading

If your organization uses ScriptCase — a popular low-code platform for building PHP web applications — recent security alerts should be taken seriously. Two major vulnerabilities have been discovered by cybersecurity researches with Synacktiv that could enable attackers to fully compromise affected servers, leading to potential data theft, system control, and more. ScriptCase helps developers…

Continue Reading

Researchers at Koi Security, a cybersecurity company, have recently discovered a large-scale campaign involving dozens of fake Firefox browser extensions designed to steal cryptocurrency wallet credentials by impersonating popular wallet exchange tools. The campaign has been ongoing since at least April 2025, with new malicious extensions appearing as recently as last week. The persistent and…

Continue Reading

In a recent discovery, Cybernews researchers have uncovered a massive data leak exposing nearly 26 million resumes stored by TalentHook, a cloud-based applicant tracking system widely used by HR departments to connect with job seekers. TalentHook is a platform facilitating recruitment processes for many organizations. A misconfigured Azure Blob storage container belonging to TalentHook left…

Continue Reading

As Amazon Prime Day 2025 approaches on July 8th, shoppers worldwide are eagerly preparing their wish lists for the big savings event. But this busy shopping period also attracts hackers. Cybercriminals are actively deploying phishing attacks and creating fake domains designed to deceive consumers. Security researches at Check Point Research in a recent report found…

Continue Reading

As cyber threats continue to evolve, attackers are exploiting even the most trusted file formats for nefarious purposes. In its latest research, Cisco Talos Intelligence Group highlights how PDF files are increasingly being used as delivery mechanisms for brand impersonation and callback phishing campaigns. The findings stem from recent enhancements to Cisco’s brand impersonation detection…

Continue Reading