January 30, 2025 – TheCyberThrone

CVE-2024-55591 Exploit Code Released for FortiOS Flaw

Cybersecurity company watchTowr Labs has released the proof-of-concept (PoC) exploit code for a severe zero-day vulnerability, CVE-2024-55591, affecting Fortinet’s FortiOS and FortiProxy products. This vulnerability, with a CVSS score of…

PravinKarthik January 30, 2025

New Side-Channel Attacks: FLOP and SLAP in Apple’s Processors

Recent discoveries by security researchers from the Georgia Institute of Technology and Ruhr University Bochum have revealed two new side-channel vulnerabilities in Apple's modern processors, identified as FLOP (False Load…

PravinKarthik January 30, 2025

Aquabot Exploits Mitel Flaw CVE-2024-41710

The Aquabot botnet, a sophisticated variant of the Mirai botnet, has been actively exploiting CVE-2024-41710, a high-severity command injection vulnerability in Mitel SIP phones. This detailed analysis provides insights into…

PravinKarthik January 30, 2025

Tenable Acquires Vulcan to enhance VMDR capabilities

Tenable Holdings, Inc., a leading provider of cybersecurity solutions, has announced its strategic acquisition of Vulcan Cyber Ltd. for a total consideration of $150 million. This acquisition is poised to…

PravinKarthik January 30, 2025

CISA adds Apple vulnerability CVE-2025-24085 to KEV Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-24085 Apple Multiple Products Use-After-Free Vulnerability CVE-2025-24085 is a critical zero-day vulnerability…

PravinKarthik January 30, 2025