Security Alerts
The latest Security Alerts coverage — news, analysis, and updates from the WindowsNews.AI desk.
Critical Microsoft Edge Zero-Day CVE-2025-49713 Actively Exploited—Patch Now
A newly discovered critical vulnerability in Microsoft Edge, tracked as CVE-2025-49713, has sent shockwaves through the cybersecurity community. This type confusion flaw in the Chromium-based browser...
V8 zero-day CVE-2025-6554 exploited; patch Chrome, Edge now
A critical security vulnerability, identified as CVE-2025-6554, has been discovered in Google's V8 JavaScript engine, which powers popular browsers like Google Chrome, Microsoft Edge, and Opera. This...
CVE-2025-49741: Critical Edge Vulnerability Exposes User Data - What You Need to Know
A newly discovered critical vulnerability in Chromium-based Microsoft Edge, tracked as CVE-2025-49741, has raised alarms across the cybersecurity community. This information disclosure flaw could...
CISA Adds Critical Vulnerabilities to KEV Catalog: Immediate Steps for Organizations
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has escalated its alert level by adding two new critical vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog,...
Critical UPS Software Flaws Threaten Industrial Power Systems: What You Need to Know
When a system designed to keep the lights on for critical infrastructure instead risks shutting them off with a few keystrokes, alarm bells ring far beyond the server room. Such is the case with...
Hitachi Energy Power Grid Devices Hit by Critical CVE-2025-2403 DoS Flaw
A newly discovered critical vulnerability, CVE-2025-2403, has sent shockwaves through the industrial control systems (ICS) community, exposing Hitachi Energy's Relion 670/650 series and SAM600-IO...
CISA's Latest ICS Advisories: How to Protect Critical Infrastructure from Cyber Threats
Industrial Control Systems (ICS) form the backbone of critical infrastructure, from power grids to water treatment facilities, yet their increasing connectivity exposes them to sophisticated cyber...
Festo Industrial Control Vulnerabilities: Critical Risks and How to Secure Your Systems
Festo's industrial control systems, deployed in critical manufacturing environments worldwide, have come under intense cybersecurity scrutiny following the discovery of multiple high-severity...
CVE-2020-15782 in Festo Didactic CP/MPS systems enables remote code execution with a CVSS 9.8 rating.
Festo Didactic’s CP, MPS 200, and MPS 400 systems are widely recognized as advanced industrial automation training platforms, serving universities, technical schools, and industrial partners around...
Critical Festo Software Vulnerability Puts Industrial and Educational Systems at Risk
A newly discovered critical vulnerability in Festo software has sent shockwaves through industrial and educational sectors, exposing systems to potential remote code execution attacks. The flaw,...
Critical FESTO CODESYS Gateway V2 Vulnerabilities Expose Industrial Systems to Remote Attacks
Industrial control systems (ICS) are facing heightened risks as researchers uncover critical vulnerabilities in FESTO CODESYS Gateway V2, a widely used component in manufacturing and critical...
Hitachi Energy MSM XSS Vulnerability: Critical Threat to Power Systems Explained
A newly discovered cross-site scripting (XSS) vulnerability in Hitachi Energy's MSM (Modular Switchgear Manager) software has raised alarms across the energy sector. This critical flaw...