A critical authentication bypass vulnerability (CVE-2025-4978) has been discovered in NETGEAR DGND3700v2 wireless routers. The flaw, rated CVSSv4 9.3, allows unauthenticated attackers to gain full administrative access via a hidden backdoor.

Apple has patched CVE-2025-31219, a critical vulnerability in the XNU kernel affecting macOS, iOS, iPadOS, tvOS, watchOS, and visionOS. The flaw allows local attackers to escalate privileges and execute arbitrary code with kernel-level access.

A new malvertising campaign is leveraging trusted Google domains and outdated JSONP API calls to inject malicious scripts into legitimate e-commerce websites. These scripts redirect users to phishing pages that mimic payment portals.

Multiple critical vulnerabilities in Versa Concerto (versions 12.1.2–12.2.0) remain unpatched, enabling attackers to bypass authentication and achieve remote code execution (RCE) and host compromise.

GitLab has released critical patches for 11 vulnerabilities in its CE and EE platforms, including three high-severity DoS flaws. These affect all deployment models and could lead to system downtime, data exposure, and authentication bypass.

A sophisticated social engineering campaign has been actively targeting Coinbase users since early 2025, resulting in over $300 million in annual losses and $45 million in a single week in May.

A sophisticated SEO poisoning campaign has been uncovered targeting the manufacturing sector, where attackers are leveraging fake payroll portals to steal employee credentials and redirect paychecks.

A reflected XSS vulnerability in Palo Alto Networks' GlobalProtect gateway and portal allows execution of malicious JavaScript in authenticated users' browsers, posing phishing and credential theft risks, especially with Clientless VPN enabled.

A critical vulnerability (CVE-2025-1127) affecting over 150 Lexmark printer and multifunction device models allows remote attackers to execute arbitrary code via a chained exploit involving path traversal and race condition flaws.

Cybersecurity researchers have identified a sophisticated malware campaign by the Kimsuky APT group, leveraging PowerShell payloads to deploy the XWorm Remote Access Trojan (RAT).