Microsoft Releases Guidance on Exploitation of SharePoint Vulnerability (CVE-2025-53770)
UgCERT is aware of an active exploitation of a newly identified remote code execution (RCE) vulnerability CVE-2025-53770 targeting on-premise Microsoft
Phone Number Spoofing: The Trickery Behind Fake Caller IDs
Phone number spoofing, also known as caller ID spoofing, is a deceptive technique used by scammers to falsify the caller
Fake Google Meet Page Tricks Users into Running PowerShell Malware
A new phishing campaign has been discovered using a fake Google Meet page to trick users into executing a malicious
RESURGE Malware Targeting Ivanti Connect Secure
The Cybersecurity and Infrastructure Security Agency (CISA) has released a Malware Analysis Report (MAR) detailing a newly discovered malware variant,
Critical Security Flaw in Dell Unity: CVE-2025-22398 Allows Remote Root Command Execution
Dell has issued a security update addressing multiple critical vulnerabilities in Unity OS versions 5.4 and earlier. These flaws impact
New Nuxt Vulnerability Could Break Millions of Vue.js Applications
A recently uncovered vulnerability in the widely used Nuxt framework could open the door for attackers to poison CDN caches,
Google Releases OSV-Scanner V2.0.0 with Major Improvements for Open Source Security
Google has officially launched OSV-Scanner V2.0.0, the latest version of its free vulnerability scanner designed to help open source developers
Cisco Discloses Border Gateway Protocol DoS Vulnerability (CVE-2025-20115)
Cisco has disclosed a denial-of-service (DoS) vulnerability in the Border Gateway Protocol (BGP) confederation implementation within Cisco IOS XR Software.
Fake CAPTCHA Campaign Delivering Malware
CERT has learnt of a campaign in which threat actors compromise widely used websites across various industries to embed fake
Microsoft Security Updates
Microsoft has released its March 2025 Patch security updates, addressing 57 vulnerabilities, including six actively exploited zero-day flaws and one