Identity of hacker behind NSW court website data breach unknown, police say

Hiding WordPress malware in the mu-plugins directory to avoid detection

Sucuri researchers have detected a number of cases where hackers have hidden malware within the mu-plugins directory of WordPress, which auto-loads without activation. WordPress site

Apple Warns of Three 0-Day Vulnerabilities Actively Exploited in Attacks

Apple has issued a security advisory for three critical zero-day vulnerabilities (CVE-2025-24200, CVE-2025-24201, CVE-2025-24085) affecting various devices. Users are urged to update their devices immediately

CrushFTP Vulnerability Exploited in Attacks Following PoC Release

Security researchers report active exploitation of a critical authentication bypass vulnerability (CVE-2025-2825) in CrushFTP, affecting versions up to 11.3.0. Approximately 1,512 unpatched instances exist globally,

CISA Warns of Cisco Smart Licensing Utility Credential Vulnerability Exploited in Attacks

CISA has added a critical Cisco vulnerability, CVE-2024-20439, affecting the Smart Licensing Utility, to its Known Exploited Vulnerabilities catalog due to active exploitation. This vulnerability

News and Analysis

Subscribe to newsletter

More Posts

Hiding WordPress malware in the mu-plugins directory to avoid detection

Apple Warns of Three 0-Day Vulnerabilities Actively Exploited in Attacks

CrushFTP Vulnerability Exploited in Attacks Following PoC Release

CISA Warns of Cisco Smart Licensing Utility Credential Vulnerability Exploited in Attacks

Products

Solutions

Healthcare cybersecurity

Healthcare Threat Intelligence

Use Cases

News and Analysis

Insights

Company