Offensive security

CVE-2025-49127 is a crit­i­cal re­mote code ex­e­cu­tion vul­ner­a­bil­i­ty af­fect­ing Kaf­bat UI ver­sion 1.0.0. This vul­ner­a­bil­i­ty al­lows any unau­then­ti­cat­ed user to ex­e­cute ar­bi­trary code on the serv­er […]

CVE-2025-32433 is a critical remote code execution (RCE) vulnerability in the Erlang/OTP SSH implementation. It allows an unauthenticated attacker to execute arbitrary code on systems running […]

In June 2025, a critical local privilege escalation vulnerability was disclosed in the Fedora and SUSE Linux environments involving the udisksd daemon and its backend library […]

In May 2025, a critical vulnerability (CVE-2025-4318) was disclosed in the @aws-amplify/codegen-ui package, a core part of AWS Amplify Studio’s UI generation process. The issue arises […]

Imagine a scenario when a threat actor finds a tiny crack in your cloud network. The gap is just big enough to sneak in and cause […]

Mobile apps handle sensitive user data and are frequent targets for cyber threats. Chief Information Security Officers (CISOs) face constant challenges in securing APIs against evolving […]

The advent of GenAI systems, such as DeepSeek, OpenAI’s ChatGPT, or Gemini, has changed the game for businesses forever. The surge in productivity is expected to […]

CVE-2025-2783 is a high-impact vulnerability in the Google Chrome web browser, specifically affecting the Mojo inter-process communication (IPC) component on Windows systems. The flaw is rooted […]

The security of cloud applications has become a critical concern for organizations of all sizes. A notable case study that illustrates the importance of robust security […]