The Asahi cyberattack halts beer production, drops shipments by 90%, and lets rivals like Kirin and Sapporo gain ground amid Japan’s peak season.

CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881 let attackers escape containers and access hosts.

Businesses operating in or serving customers within New York must disclose if they use personalized algorithmic pricing.

Synology patched a Critical (CVSS 9.8) RCE zero-day flaw (CVE-2025-12686) in BeeStation OS. The vulnerability, found during Pwn2Own, allows remote attackers to execute arbitrary code. Update to v1.3.2-65648.

SAP released its Patch Day update fixing 18 flaws, including two Critical (CVSS 10.0) vulnerabilities: RMI-P4 RCE and Hard-Coded Credentials in SQL Anywhere Monitor, risking unauthenticated takeover.

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Samsung mobile devices flaw to its Known Exploited Vulnerabilities catalog.

A security vulnerability has been discovered in WatchGuard Firebox devices that could allow attackers to bypass authentication mechanisms.

A sophisticated new ransomware operation dubbed VanHelsing has emerged as a rapidly expanding threat in the cybercriminal landscape.

Devolutions Server has been found vulnerable to a critical security flaw that allows low-privileged authenticated users.

KnowBe4 Threat Labs has uncovered a sophisticated phishing campaign that marks a turning point in cybercriminal capabilities.

Zimbra fixes Critical Stored XSS and an Unauthenticated LFI flaw, urging users to update immediately to mitigate session hijacking and data exfiltration risks.

Ferocious Kitten, a covert cyber-espionage group active since at least 2015, has emerged as a persistent threat to Persian-speaking dissidents and activists within Iran.

North Korea-linked APT Konni posed as counselors to steal data and wipe Android phones via Google Find Hub in Sept 2025.

With more than 5.4 billion social media users worldwide, Facebook remains a critical marketing channel for businesses of all sizes.

A sophisticated Android remote-access trojan named KomeX RAT has emerged on underground hacking forums.

SAP has released an update addressing 18 new vulnerabilities, including several critical flaws related to code execution and data injection.

A recent investigation by Cyble Research and Intelligence Labs (CRIL) has uncovered a sophisticated phishing campaign.

The notorious APT-C-08 hacking group, also known as BITTER, has been observed weaponizing a critical WinRAR directory traversal vulnerability.

A security vulnerability has been discovered in Zoom Workplace's VDI Client for Windows that could allow attackers to escalate their privileges.

Researchers found Fantasy Hub, a Russian MaaS Android RAT that lets attackers spy, steal data, and control devices via Telegram.

Networking infrastructure is an often-overlooked threat surface being targeted by sophisticated threat actors. Learn more about this topic.