Envoy Air (MQ)
public
–
3 min read
Envoy Air, a regional subsidiary of American Airlines, confirmed a cybersecurity breach linked to the Clop ransomware group, which exploited…
Adobe
public
–
3 min read
Adobe is facing active exploitation of a critical vulnerability (CVE-2025-54253) in its Adobe Experience Manager (AEM) Forms on JEE (versions…
Microsoft
public
–
3 min read
The Cybersecurity and Infrastructure Security Agency (CISA) identified CVE-2025-59230, a critical privilege escalation vulnerability in Windows Remote Access Connection Manager,…
SAP
public
–
3 min read
SAP addressed a critical insecure deserialization vulnerability (CVE-2025-42944, CVSS 10.0) in its SAP NetWeaver platform, allowing unauthenticated attackers to…
Oracle
public
–
3 min read
Oracle issued an emergency security update to patch a critical information disclosure vulnerability (CVE-2025-61884, CVSS 7.5) in its E-Business…
Qantas
public
–
3 min read
Hackers linked to the group *Scattered Lapsus$ Hunters* breached Qantas’ third-party Salesforce environment in mid-2025, exfiltrating and leaking personal data…
Unnamed Victim Organization (as per Cisco Talos report)
public
–
3 min read
The company fell victim to a sophisticated ransomware attack orchestrated by the Storm-2603 gang (linked to Warlock, LockBit, and Babuk…
Colonial Pipeline
public
–
4 min read
In Q3 2025, Colonial Pipeline faced a devastating ransomware attack orchestrated by LockBit 5.0, which explicitly targeted critical infrastructure—…
Bybit
public
–
3 min read
In 2025, North Korean state-sponsored hackers executed a sophisticated cyber attack on Bybit, a major cryptocurrency exchange, resulting in the…
Discord
public
–
1 min read
Discord, a widely used messaging platform, suffered a data breach in 2025 after a third-party customer service provider it relied…
OpenSSH (OpenBSD Project)
public
–
3 min read
A critical vulnerability (CVE-2025-61984) in OpenSSH’s ProxyCommand feature allows remote attackers to execute arbitrary code on client systems by…
Elastic
public
–
2 min read
A critical vulnerability (CVE-2025-37728) was discovered in Elastic’s **Kibana CrowdStrike Connector**, where insufficient credential isolation in a shared cache…