The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a serious warning about ongoing cyberattacks targeting SaaS infrastructures—highlighting a breach involving Commvault’s Metallic SaaS...
SoloSecurities
Editor’s pick
This week’s hottest
Account Takeover (User + Admin) Via Password Reset
Hello Everyone! I’m Hemant Patidar, Final Year B.Tech – Civil Engineering Student at SRMIST, Chennai. A Cyber Security Enthusiast, Security Engineer, and a Bug Bounty Hunter by night. Let’s start… While...
Apple Releases Urgent Security Update for WebKit Zero-Day
Introduction Apple has once again stepped up to reinforce the security of its ecosystem by releasing a crucial patch for a zero-day vulnerability in its WebKit browser engine. The flaw, identified as CVE-2025-24201, has...
Hackers Use Polymorphic Extensions to Hijack Browser Add-Ons & Steal Data
Introduction Cybersecurity researchers have uncovered a highly sophisticated attack technique that enables malicious browser extensions to impersonate any installed add-on. This novel approach, referred to as a...
57 Security Flaws Fixed: Microsoft Releases Critical Patch
Introduction Microsoft has released a crucial security update, addressing 57 security vulnerabilities in its software. Among these, six zero-day vulnerabilities have been actively exploited by attackers. The update is...
How earned $500 from Google – Flaw in Authentication
Hello Everyone! Today I will share the write-up of my first accepted bug in Google, Which is in “Google Cloud Partner Advantage Portal” where I was able to modify personal details for victim account via Broken...
Latest articles
