WordPress sites using the AI Engine plugin should be aware of a recently discovered security vulnerability that could allow malicious actors to upload arbitrary files and potentially take control of affected websites. On July 18th, 2025, a security report submitted to Wordfence revealed an Arbitrary File Upload vulnerability in the AI Engine plugin, which is…

Continue Reading

The Cybersecurity and Infrastructure Security Agency (CISA), working alongside Sandia National Laboratories, has announced that Thorium is now available for public use. This platform is designed to help cybersecurity teams automate file analysis and improve the efficiency of their threat detection workflows. Scalable Solution for Modern Cybersecurity Challenges Thorium is a distributed platform that brings…

Continue Reading

Users and organizations are increasingly rely on generative AI (artificial intelligence) tools to streamline workflows, enhance productivity, and handle sensitive data. But new security threats are emerging, some of which could have serious consequences. Recent research highlights a growing vulnerability with AI usage and browser extensions, which can be exploited to manipulate prompts and exfiltrate…

Continue Reading

Public charging stations have always been considered a convenient way to power up devices on the go. However, recent cybersecurity research reveals a disturbing new threat—called Choicejacking—that turns these stations into data-stealing traps, often without the user even realizing it. For years, “juice jacking” has been a known security concern. Hackers infected charging stations or…

Continue Reading

Cyber threats like phishing and session hijacking continue to grow, making it more important than ever for organizations to strengthen account security. Google Workspace has introduced several new tools designed to make accounts harder to compromise and easier to secure. Passkeys Are Now Available Passkeys replace traditional passwords with cryptographic keys stored on your device.…

Continue Reading

Lenovo has released a security advisory regarding significant vulnerabilities found in the Insyde BIOS firmware used in certain IdeaCentre and Yoga All-In-One products. These vulnerabilities, tracked as CVE-2025-4421 through CVE-2025-4426, could potentially allow a privileged local attacker to read sensitive contents in System Management RAM (SMRAM) or execute arbitrary code within System Management Mode (SMM).…

Continue Reading

Orange Group, a major telecommunications provider, has reported recently detected suspicious activity targeting one of its information systems. As soon as the threat was detected, the company’s dedicated teams, working closely with Orange Cyberdefense, moved swiftly to contain the situation and protect its services. The attack led to some temporary disruptions, mainly affecting certain management…

Continue Reading