How Attackers Exploited ViewState Deserialization to Breach Sitecore Deployments A sophisticated cyber campaign has targeted organizations running Sitecore products, exploiting a critical zero-day flaw ( CVE-2025-53690 ). Attackers gained remote code execution by abusing exposed A... cybersecurity deserialization incident response malware remote code execution Sitecore ViewState zero-day
Samsung Rushes Critical Zero-Day Patch to Protect Galaxy Devices Samsung Galaxy owners are facing a pressing security issue after the discovery of a serious zero-day vulnerability currently being exploited. Samsung’s latest September 2025 security update is designe... Android security cybersecurity mobile devices patch management remote code execution Samsung vulnerability zero-day
Zero-Day SharePoint Vulnerabilities: How to Protect Your Organization Now Security teams are racing to address two newly discovered zero-day vulnerabilities in on-premises Microsoft SharePoint Server, CVE-2025-53770 and CVE-2025-53771. Dubbed the “ToolShell” exploit chain, ... cybersecurity incident response patching remote code execution SharePoint vulnerabilities zero-day
GitHub Copilot Vulnerability: How Prompt Injection Opened the Door to RCE Attacks A critical vulnerability in GitHub Copilot , identified as CVE-2025-53773 exposed developers to remote code execution (RCE) and full system compromise, all triggered by malicious prompt injection with... AI security cybersecurity developer tools GitHub Copilot Microsoft prompt injection remote code execution vulnerability
MCP-Remote Flaw: Why AI Integrators Must Act Fast on CVE-2025-6514 What if there was a tool designed to make AI applications smarter and more connected but with a hidden flaw that could hand attackers the keys to your system? That’s exactly the risk uncovered in the ... AI security Anthropic cybersecurity MCP open source patch management remote code execution vulnerability
Critical MCP Vulnerability in Anthropic Puts AI Developer Tools at Risk A recent discovery in Anthropic’s Model Context Protocol (MCP) Inspector has sent shockwaves through the AI development community. A critical vulnerability, scoring an alarming 9.4 on the CVSS scale, ... AI security Anthropic context poisoning CSRF enterprise risk MCP Inspector remote code execution vulnerability