Gitlab was impacted by Twin Critical Vulnerabilities

Gitlab was impacted by Twin Critical Vulnerabilities

The CVE-2025-25291 and CVE-2025-25292 vulnerabilities represent critical security flaws impacting GitLab’s SAML (Security Assertion Markup Language)-based Single Sign-On (SSO) authentication mechanism. These vulnerabilities are particularly concerning as they allow attackers…
Elysium Ransomware Dissection

Elysium Ransomware Dissection

The Elysium ransomware strain is an advanced and highly targeted malware variant identified in early 2025, forming part of the infamous Ghost ransomware family. It has gained notoriety for its…
SuperBlack Ransomware Dissection

SuperBlack Ransomware Dissection

The SuperBlack ransomware is an advanced and highly destructive malware variant identified in early 2025. It has quickly gained attention due to its targeted deployment and the intricate tactics used…
CISA KEV Catalog Update Part V – March 2025

CISA KEV Catalog Update Part V – March 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has added vulnerabilities in Juniper Networks' Junos OS and Apple products to its Known Exploited Vulnerabilities (KEV) Catalog, signaling their active exploitation in…
CVE-2025-27017 affects Apahe NiFi

CVE-2025-27017 affects Apahe NiFi

The CVE-2025-27017 vulnerability is a medium-severity security issue that affects Apache NiFi, a widely used data integration and processing platform. This vulnerability stems from improper handling of sensitive information, leading…
CVE-2025-24201 Zeroday Impacts Apple Products

CVE-2025-24201 Zeroday Impacts Apple Products

The CVE-2025-24201 vulnerability represents a significant security flaw affecting Apple’s WebKit browser engine, which powers Safari and other browsers on Apple’s ecosystem of devices. This zero-day vulnerability is critical due…
BackConnect Campaign

BackConnect Campaign

The BackConnect campaign is a highly organized and sophisticated cyberattack operation that leverages advanced malware to establish and maintain persistent access to compromised systems. This campaign, closely tied to ransomware…