The Cybersecurity and Infrastructure Security Agency (CISA) has released a Malware Analysis Report (MAR) detailing a newly discovered malware variant, RESURGE, linked to CVE-2025-0282, a critical vulnerability in Ivanti Connect Secure, Policy Secure, and ZTA Gateways. Key Findings on RESURGE Malware RESURGE builds on the capabilities of SPAWNCHIMERA malware but…

Dell has issued a security update addressing multiple critical vulnerabilities in Unity OS versions 5.4 and earlier. These flaws impact Dell Unity, UnityVSA, and Unity XT storage systems, exposing them to severe security threats, including unauthenticated remote command execution, arbitrary file deletion, open redirects, and privilege escalation. The most alarming…

A recently uncovered vulnerability in the widely used Nuxt framework could open the door for attackers to poison CDN caches, leading to broken or inaccessible full-stack Vue.js applications. Tracked as CVE-2025-27415 with a CVSS score of 7.5, this flaw affects all Nuxt versions from 3.0.0 up to (but not including)…

Google has officially launched OSV-Scanner V2.0.0, the latest version of its free vulnerability scanner designed to help open source developers secure their projects. Originally introduced in 2022, OSV-Scanner acts as the front-end to Google’s Open Source Vulnerability (OSV) database, which helps developers identify and fix security issues. The new version…