Microsoft patch Tuesday update fails to install
Summary Microsoft has acknowledged that the August 12, 2025 Windows security update for Windows 11, version 24H2, may fail to install when deployed via Windows Server Update Services (WSUS), returning…
Summary Microsoft has acknowledged that the August 12, 2025 Windows security update for Windows 11, version 24H2, may fail to install when deployed via Windows Server Update Services (WSUS), returning…
Lock down your critical infrastructure, CISA begs admins Summary CISA has published foundational guidance urging organisations that manage operational technology (OT) to dramatically improve their cyber posture by adopting a…
BtcTurk suspends operations amid alleged $49M hot wallet heist Summary Turkish cryptocurrency exchange BtcTurk temporarily halted all crypto deposits and withdrawals on 14 August 2025 after detecting unusual activity in…
MadeYouReset’ HTTP/2 flaw lets attackers DoS servers Summary Security researchers Gal Bar Nahum, Anat Bremler-Barr and Yaniv Harel disclosed a widespread design flaw in many HTTP/2 implementations they call “MadeYouReset”…
Popular AI Systems Still a Work-in-Progress for Security Summary A Forescout investigation tested 50 large language models (LLMs) for offensive-security tasks and found that while many commercial, general-purpose LLMs can…
Patch Now: Attackers Target OT Networks via Critical RCE Flaw Summary Researchers from Palo Alto Networks Unit 42 have observed active exploitation of a critical remote code execution vulnerability in…
Google Chrome Enterprise: Keeping Businesses Safe From Threats on the Web Summary Dark Reading’s Terry Sweeney interviews Jason Kemmerer from Google Cloud Security on how organisations can secure the modern…
North Korea Attacks South Koreans With Ransomware Summary A North Korean subgroup of Scarcruft (aka APT37), known as “ChinopuNK,” has launched a multi-stage campaign targeting South Korean victims. Researchers at…
Fortinet Products Are in the Crosshairs Again Summary Fortinet has disclosed a critical unauthenticated OS command injection vulnerability in FortiSIEM (CVE-2025-25256). A proof-of-concept exploit is circulating in the wild. The…
Whispers of XZ Utils Backdoor Live on in Old Docker Images Summary Binarly researchers report that remnants of the notorious XZ Utils backdoor (CVE-2024-3094) still exist in a number of…