CYBER Threat Intelligence Reports
LATEST CTIs
Active Exploitation of Fortinet FortiCloud SSO Authentication Bypass (CVE-2025-59718 & CVE-2025-59719)
Threat actors are actively exploiting two critical authentication bypass vulnerabilities in Fortinet products by abusing FortiCloud SSO functionality. The flaws, tracked as CVE-2025-59718 & CVE-2025-59719…
Read more >
Apple WebKit Zero-Day Exploited in Targeted Attacks (CVE-2025-14174)
Apple has released emergency security updates to address CVE-2025-14174, a zero-day vulnerability in WebKit that has been actively exploited in the wild as part of…
Read more >
React2Shell (CVE-2025-55182): Critical React RCE With Active China-Linked Exploitation
CVE-2025-55182, also known as React2Shell, is a critical unauthenticated remote-code-execution vulnerability in React Server Components (RSC) that allows attackers to execute arbitrary code on the…
Read more >
Google Chrome Zero-Day Actively Exploited: CVE-2025-13223
A new high-severity zero-day in Google Chrome is being actively exploited to compromise users through malicious websites. The vulnerability, tracked as CVE-2025-13223, is a type…
Read more >
Critical Remote Code Execution in WatchGuard Firebox VPN Appliances: CVE-2025-9242
A critical vulnerability in WatchGuard Firebox firewalls is being actively exploited to gain remote, unauthenticated code execution on perimeter devices. The flaw, tracked as CVE-2025-9242,…
Read more >
Critical Zero-Day in Samsung Galaxy Devices: CVE-2025-21042
A newly disclosed zero-day vulnerability in Samsung Galaxy smartphones has been actively exploited in the wild to deploy a sophisticated Android spyware framework known as…
Read more >
