Author Archives: Waqas

Critical Langflow Vulnerability (CVE-2025-3248) Actively Exploited, Warns CISA

Posted on May 7, 2025 by Waqas

CISA warns of active exploitation of critical Langflow vulnerability (CVE-2025-3248). Critical RCE flaw allows full server takeover. Patch… Continue reading Critical Langflow Vulnerability (CVE-2025-3248) Actively Exploited, Warns CISA→

ClickFix Scam: How to Protect Your Business Against This Evolving Threat

Posted on May 6, 2025 by Waqas

Cybercriminals aren’t always loud and obvious. Sometimes, they play it quiet and smart. One of the tricks of… Continue reading ClickFix Scam: How to Protect Your Business Against This Evolving Threat→

New Cloud Vulnerability Data Shows Google Cloud Leads in Risk

Posted on May 6, 2025 by Waqas

New research shows Google Cloud and smaller providers have the highest cloud vulnerability rates as compared to AWS… Continue reading New Cloud Vulnerability Data Shows Google Cloud Leads in Risk→

Fake Alpine Quest Mapping App Spotted Spying on Russian Military

Posted on April 22, 2025 by Waqas

Fake Alpine Quest app laced with spyware was used to target Russian military Android devices, stealing location data,… Continue reading Fake Alpine Quest Mapping App Spotted Spying on Russian Military→

Booking.com Phishing Scam Uses Fake CAPTCHA to Install AsyncRAT

Posted on April 21, 2025 by Waqas

Fake Booking.com emails trick hotel staff into running AsyncRAT malware via fake CAPTCHA, targeting systems with remote access… Continue reading Booking.com Phishing Scam Uses Fake CAPTCHA to Install AsyncRAT→

2025’s Top OSINT Tools: A Fresh Take on Open-Source Intel

Posted on April 18, 2025 by Waqas

Check out the top OSINT tools of 2025, an updated list featuring the best free and paid open-source… Continue reading 2025’s Top OSINT Tools: A Fresh Take on Open-Source Intel→

Researchers Find CVSS 10.0 Severity RCE Vulnerability in Erlang/OTP SSH

Posted on April 17, 2025 by Waqas

Security researchers report CVE-2025-32433, a CVSS 10.0 RCE vulnerability in Erlang/OTP SSH, allowing unauthenticated code execution on exposed… Continue reading Researchers Find CVSS 10.0 Severity RCE Vulnerability in Erlang/OTP SSH→

Qrator Labs Reports Mitigating Year’s Largest DDoS Attack to Date

Posted on April 17, 2025 by Waqas

Qrator Labs reports it mitigated a massive record 965 Gbps DDoS attack in April 2025, the largest incident… Continue reading Qrator Labs Reports Mitigating Year’s Largest DDoS Attack to Date→

CVE Program Stays Online as CISA Backs Temporary MITRE Extension

Posted on April 16, 2025 by Waqas

MITRE avoids CVE program shutdown with last-minute contract extension. Questions remain about long-term funding and the future of… Continue reading CVE Program Stays Online as CISA Backs Temporary MITRE Extension→

BidenCash Market Dumps 1 Million Stolen Credit Cards on Russian Forum

Posted on April 16, 2025 by Waqas

BidenCash dumps almost a million stolen credit card records on Russian forum, exposing card numbers, CVVs, and expiry dates in plain text with no cardholder names. Continue reading BidenCash Market Dumps 1 Million Stolen Credit Cards on Russian Forum→