Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: exploited Clear Filter

WhatsApp patches vulnerability exploited in zero-day attacks

bleepingcomputer.com Unknown 2025-10-24 07:31:23

WhatsApp has patched a security vulnerability in its iOS and macOS messaging clients that was exploited in targeted zero-day attacks. The company says this zero-click flaw (tracked as CVE-2025-55177) affects WhatsApp for iOS prior to version 2.25.21.73, WhatsApp Business for iOS v2.25.21.78, and WhatsApp for Mac v2.25.21.78. "Incomplete authorization of linked device synchronization messages in WhatsApp [..] could have allowed an unrelated user to trigger processing of content from an arbitrar

Topics: device exploited security targeted whatsapp
Read More
Shop Amazon

Netherlands: Citrix Netscaler flaw CVE-2025-6543 exploited to breach orgs

bleepingcomputer.com Unknown 2025-11-28 20:19:49

The Netherlands' National Cyber Security Centre (NCSC) is warning that a critical Citrix NetScaler vulnerability tracked as CVE-2025-6543 was exploited to breach "critical organizations" in the country. The critical flaw is a memory overflow bug that allows unintended control flow or a denial of service state on impacted devices. "Memory overflow vulnerability leading to unintended control flow and Denial of Service in NetScaler ADC and NetScaler Gateway when configured as Gateway (VPN virtual

Topics: 13 2025 citrix exploited ncsc
Read More
Shop Amazon

CISA warns of hackers exploiting SysAid vulnerabilities in attacks

bleepingcomputer.com Unknown 2026-01-04 05:30:15

CISA has warned that attackers are actively exploiting two security vulnerabilities in the SysAid IT service management (ITSM) software to hijack administrator accounts. The two unauthenticated XML External Entity (XXE) flaws, tracked as CVE-2025-2775 and CVE-2025-2776, were reported by watchTowr Labs security researchers in December 2024 and patched in March with the release of SysAid On-Prem version 24.4.60. One month later, watchTowr Labs also published proof-of-concept code, showing that t

Topics: cisa exploited federal sysaid vulnerabilities
Read More
Shop Amazon

Public exploits released for Citrix Bleed 2 NetScaler flaw, patch now

bleepingcomputer.com Unknown 2026-02-03 11:57:37

Researchers have released proof-of-concept (PoC) exploits for a critical Citrix NetScaler vulnerability, tracked as CVE-2025-5777 and dubbed CitrixBleed2, warning that the flaw is easily exploitable and can successfully steal user session tokens. The CitrixBleed 2 vulnerability, which affects Citrix NetScaler ADC and Gateway devices, allows attackers to retrieve memory contents simply by sending malformed POST requests during login attempts. This critical flaw is named CitrixBleed2 as it close

Topics: citrix exploited flaw memory netscaler
Read More
Shop Amazon

Public exploits released for CitrixBleed 2 NetScaler flaw, patch now

bleepingcomputer.com Unknown 2026-02-04 05:57:37

Researchers have released proof-of-concept (PoC) exploits for a critical Citrix NetScaler vulnerability, tracked as CVE-2025-5777 and dubbed CitrixBleed2, warning that the flaw is easily exploitable and can successfully steal user session tokens. The CitrixBleed 2 vulnerability, which affects Citrix NetScaler ADC and Gateway devices, allows attackers to retrieve memory contents simply by sending malformed POST requests during login attempts. This flaw is named CitrixBleed2 as it closely resemb

Topics: citrix exploited flaw memory netscaler
Read More
Shop Amazon

CISA: AMI MegaRAC bug enabling server hijacks exploited in attacks

bleepingcomputer.com Unknown 2026-02-25 08:38:05

CISA has confirmed that a maximum severity vulnerability in AMI's MegaRAC Baseboard Management Controller (BMC) software is now actively exploited in attacks. The MegaRAC BMC firmware provides remote system management capabilities for troubleshooting servers without being physically present, and it's used by several vendors (including HPE, Asus, and ASRock) that supply equipment to cloud service providers and data centers. This authentication bypass security flaw (tracked as CVE-2024-54085) ca

Topics: ami attacks bmc eclypsium exploited
Read More
Shop Amazon
Trending Topics
Hot Now
ai 3660 apple 3037 new 2414 google 2036 content 1733
Popular
like 1503 company 1431 pro 1336 iphone 1176 app 1133 zdnet 1114 said 1070 data 1052 does 909 reviews 894
Emerging
editorial 873 amazon 860 game 810 samsung 777 phone 767 pixel 761 android 743 just 721 users 689 available 685
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]