Latest Security Alerts

S.No.	Vulnerability / Advisory	Details
1.	Multiple Vulnerabilities in Adobe Products (CIVN-2025-0138)	Software Affected: Adobe After Effects versions before 24.6.7 for Windows and MacOS, Adobe After Effects versions before 25.3 for Windows and MacOS. Kindly update to the latest version ASAP.
2.	WinRAR zero-day Under Active Exploitation (CVE-2025-8088)	To safeguard against potential threats, update to the latest WinRAR version 7.13, released on July 31, 2025.
3.	Broad Credential Exposure Involving Multiple Online Services (CERT-In Advisory CIAD-2025-0024)	Recently, several media outlets reported a significant exposure of approximately 16 billion login credentials, including usernames, passwords, authentication tokens, and associated metadata from platforms such as Apple, Google, Facebook, Telegram, GitHub, and various virtual private network (VPN) services. Recommendations to mitigate risks Update Passwords Immediately: Change passwords for all affected services, prioritizing email, banking, social media, and government portals. Create strong, unique passwords (minimum 12 characters, including letters, numbers, and symbols). Avoid reusing passwords across services to prevent credential stuffing attacks. Make it a habit to change your passwords regularly. Enable Multi-Factor Authentication (MFA): Activate MFA on all accounts that support it, using authenticator apps, hardware tokens, or SMS-based verification. Transition to Passkeys: Where supported (e.g., Apple, Google), enable passkeys for password-less, phishing-resistant authentication using biometrics or device PINs. Protect Against Malware: Run antivirus scans to detect and remove infostealer malware. Ensure operating systems, browsers, and applications are updated to address known vulnerabilities.
4.	Multiple Vulnerabilities in Mozilla Firefox (CIVN-2025-0138)	Software Affected: Mozilla Firefox versions before 140, Please update to the latest version as soon as possible. A remote attacker could exploit these vulnerabilities by convincing a victim to trigger a specially crafted web request.
5.	The zero-day vulnerability in Google Chrome Browser (CVE-2025-6554)	To safeguard against potential threats, it's advised to update Chrome browser to versions 138.0.7204.96/.97 for Windows, 138.0.7204.92/.93 for macOS, and 138.0.7204.96 for Linux. If you're unsure whether your browser is up to date, go to Settings > Help > About Google Chrome — it should trigger the latest update automatically.