Security News - Brandefense

Platform Overview
Comprehensive Cybersecurity
Solution in One Platform

See How It Works

MODULES & ANALYTICS
External Attack Surface Management Cyber Threat Intelligence Digital Risk Protection Services Third-Party Risk Management
Customer Stories
Success in Cybersecurity
Stories

Discover More

Integrations
Discover innovative solutions and
integrative platforms to connect and
streamline your digital ecosystem

Discover More

EASM USE CASES
Asset Discovery & Shadow It Attack Surface Reduction Misconfiguration Detection
CTI USE CASES
Darkweb Monitoring Ransomware Intelligence Threat Actor Landscape Threat Search Investigation Vulnerability Intelligence
DRPS USE CASES
Executive Protection Fraudulent Ad Detection Phishing Monitoring & Domain Abuse Brand Impersonation & Social Media Takedown
Brandefense Academy
Your trusted hub for learning, developing, and mastering the skills that shape tomorrow's digital defense.

Discover Now

RESOURCES TYPES
All Resources Blog Events Glossary Threat Intelligence Researches Reports

Security News Whitepapers
Company Overview
Learn more about Brandefense life

Learn More

Careers We in The Press Awards Brandbook

React2Shell — The Day 5 Reality Check

10/12/2025 by

React2Shell (CVE-2025-55182) is a pre-auth RCE vulnerability in React Server Components with a CVSS 10.0 score. This blog examines the first five days after disclosure, how attackers weaponized it, and the urgent actions organizations must take to reduce exposure.

Data Breach at Internet Archive Exposes 31 Million User Records

11/10/2024 by

A recent cyber attack has resulted in a significant data breach at the Internet Archive, impacting 31 million users. The breach was made public after a JavaScript alert appeared on…

CISA Warns of Active Exploitation in SonicWall, Linux Kernel, and ImageMagick Vulnerabilities

12/09/2024 by

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding the active exploitation of three critical vulnerabilities, which have been added to its Known Exploited Vulnerabilities (KEV)…

CVE-2024-8105: Critical UEFI Vulnerability

05/09/2024 by

CVE-2024-8105, also known as “PKfai,” is a significant vulnerability identified within the UEFI (Unified Extensible Firmware Interface) ecosystem. With a CVSS score of 8.2, this flaw weakens critical UEFI security…

Actively Exploited Two New Zero-Day Vulnerabilities Hit Google Chrome

28/08/2024 by

Google has recently confirmed that two zero-day vulnerabilities, CVE-2024-7965 and CVE-2024-7971, have been actively exploited in the wild, posing a significant threat to Chrome users. CVE-2024-7965, with a CVSS score…

CVE-2024-38193: Microsoft Patches Critical Zero-Day Exploit Used by North Korea’s Lazarus Group

21/08/2024 by

A new vulnerability discovered in the Microsoft Windows operating system has been exploited as a zero-day attack by the Lazarus Group, a state-sponsored actor affiliated with North Korea. This vulnerability…

August’24 Patch Tuesday: Six Actively Exploited Zero-Day Vulnerabilities

14/08/2024 by

In its August 2024 Patch Tuesday release, Microsoft addressed 88 vulnerabilities, including seven critical flaws and ten zero-day vulnerabilities. Notably, six of these zero-day vulnerabilities are currently being actively exploited…

Critical Zero-Day Kernel Vulnerability Actively Exploited in Android Devices

07/08/2024 by

Google’s recent Android security updates have revealed a critical zero-day vulnerability, CVE-2024-36971, which has been actively exploited in targeted attacks. This flaw, found in the network route management of the…

First Days, First Shots: Scammers Exploit Paris Olympics with 48GB Mobile Data

29/07/2024 by

As the Paris Olympics are set to begin this weekend, threat actors are attempting to exploit the situation for their own gain. They have initiated fraudulent activities aimed at profiting…

BlastRADIUS Vulnerability (CVE-2024-3596) Exposes RADIUS Protocol to Critical Network Security Risk

10/07/2024 by

A newly identified vulnerability (CVE-2024-3596), dubbed “BlastRADIUS,” has been discovered in the RADIUS protocol, posing a critical risk to network security. Researchers from the University of California, San Diego, have published…

Category: Security News

React2Shell — The Day 5 Reality Check

Data Breach at Internet Archive Exposes 31 Million User Records

CISA Warns of Active Exploitation in SonicWall, Linux Kernel, and ImageMagick Vulnerabilities

CVE-2024-8105: Critical UEFI Vulnerability

Actively Exploited Two New Zero-Day Vulnerabilities Hit Google Chrome

CVE-2024-38193: Microsoft Patches Critical Zero-Day Exploit Used by North Korea’s Lazarus Group

August’24 Patch Tuesday: Six Actively Exploited Zero-Day Vulnerabilities

Critical Zero-Day Kernel Vulnerability Actively Exploited in Android Devices

First Days, First Shots: Scammers Exploit Paris Olympics with 48GB Mobile Data

BlastRADIUS Vulnerability (CVE-2024-3596) Exposes RADIUS Protocol to Critical Network Security Risk

Get insight, Analysis &
News Straight to Your
Inbox

PLATFORM

SOLUTIONS

RESOURCES

COMPANY