KERNELWATCHER

Ivanti Under Siege: Zero-Day Vulnerabilities Unmask Alarming Security Gaps

Mail Mayhem: SmarterMail Users Exposed as Critical RCE Bug Goes Wild

A critical vulnerability in SmarterMail left thousands at risk of remote code execution-until a recent emergency patch.

Zero-Day Siege: Ivanti EPMM Flaws Hand Hackers the Keys-Are Enterprises Listening?

A pair of critical vulnerabilities in Ivanti Endpoint Manager Mobile have already been weaponized, forcing urgent security updates amid rising fears of stealthy intrusions.

“The Night Before Christmas” DDoS: Aisuru Botnet Unleashes Record-Shattering 31.4 Tbps Attack

Aisuru botnet’s holiday blitz exposes the escalating scale and sophistication of global DDoS threats.

Fortinet in the Crosshairs: Hackers Exploit Fresh SSO Flaw, Thousands at Risk

A critical FortiCloud vulnerability is being weaponized, prompting urgent warnings and a scramble to secure thousands of exposed systems.

PyTorch’s Hidden Trap: How a Single Model File Could Take Down Your AI Stack

A critical flaw in PyTorch’s checkpoint loading exposes machine learning systems to remote code execution and full system compromise.

Ghosts in the Registry: How ‘Swarmer’ Outsmarts Windows Security with Forgotten Features

A new attacker toolkit weaponizes obscure Windows profile mechanics to slip past even hardened endpoint defenses.

SolarWinds’ Web Help Desk: The Six-Alarm Security Fire You Can’t Ignore

Spreadsheet Sabotage: How a Cracked Sandbox Nearly Exposed Grist-Core Users to Remote Takeover

A stealthy vulnerability in Grist-Core’s sandbox allowed attackers to hijack systems via spreadsheet formulas-until a critical patch arrived.

Cyber Power Play: How Mitsubishi Electric’s Acquisition of Nozomi Networks Could Reshape Industrial Security

With Nozomi Networks now a Mitsubishi Electric subsidiary, the OT and CPS cybersecurity landscape faces a seismic shift-what’s at stake for critical infrastructure worldwide?

Proxy Empire Falls: Inside Google’s Global Crackdown on the IPIDEA Cybercrime Network

Google’s takedown of the IPIDEA proxy network exposes a hidden ecosystem of hijacked devices and cybercriminal activity on an unprecedented scale.

Python’s Shadow: How PyRAT RAT Outsmarts Cyber Defenses Across All Major Platforms

A new multi-OS Python-based RAT named PyRAT is slipping past antivirus scanners, giving cybercriminals covert control over Windows, Linux, and macOS systems.

Breaking the Sandbox: Critical n8n Flaws Put Automation Workflows at Hacker’s Mercy

Two devastating vulnerabilities in the n8n platform expose thousands of workflow automation servers to remote code execution and data theft.

Inside the Fortinet SSO Breach: How a Hidden Flaw Opened the Door for Hackers

SolarWinds Under Fire: Multiple Critical Flaws Expose Web Help Desk to Remote Takeover

SolarWinds races to patch its Web Help Desk platform after researchers uncover authentication bypasses and remote code execution vulnerabilities threatening thousands of organizations.

Router Roulette: How a Hidden TP-Link Flaw Could Let Hackers Hijack Your Home Network

A newly exposed vulnerability in TP-Link’s Archer MR600 v5 routers puts thousands of networks at risk of total takeover-unless users act fast.

Zero Day, Zero Mercy: Gemini MCP Tool Flaw Leaves Critical Systems Exposed

A devastating 0-day in the Gemini MCP Tool opens the door to remote code execution-no authentication required, no patch in sight.

Unsecured Data at Risk: The Hidden Dangers Lurking in MongoDB Deployments

A newly detected vulnerability in MongoDB reignites concerns over data security for organizations worldwide.

Node.js Sandboxes Breached: How a Single Flaw Shattered vm2’s Security Illusion

A critical vulnerability in the popular vm2 library exposes Node.js applications to dangerous sandbox escapes and arbitrary code execution.

Behind the Curtain: How a Single Node.js Library Became a Cybersecurity Flashpoint

A critical flaw in the popular vm2 library exposes Node.js applications worldwide to stealthy attacks.