Vulnerabilities
A Windows NTLM vulnerability patched in March has been exploited in attacks targeting government and private institutions.
Hi, what are you looking for?
SecurityWeek
All posts tagged "exploited"
Vulnerabilities
A SonicWall SMA 100 series vulnerability patched in 2021, which went unnoticed at the time of patching, is being exploited in the wild.
Vulnerabilities
A vulnerability in the OttoKit WordPress plugin with over 100,000 active installations has been exploited in the wild.
Vulnerabilities
CISA has added fresh CentreStack and Windows CLFS vulnerabilities to the Known Exploited Vulnerabilities catalog.
Vulnerabilities
A sophisticated APT tracked as ToddyCat has exploited an ESET DLL search order hijacking vulnerability for malware delivery.
Vulnerabilities
More than 5,000 Ivanti Connect Secure appliances are vulnerable to attacks exploiting CVE-2025-22457, which has been used by Chinese hackers.
Mobile & Wireless
Android’s latest security update resolves two exploited Kernel vulnerabilities, as well as critical-severity bugs.
Malware & Threats
Huntress has shared details on the post-exploitation activities of threat actors targeting the recent CrushFTP vulnerability.
Vulnerabilities
Two CVEs now exist for an actively exploited CrushFTP vulnerability and much of the security industry is using the ‘wrong one’.
Network Security
DrayTek has shared some clarifications regarding the recent attacks causing router reboots, but some questions remain unanswered.
Vulnerabilities
Shadowserver has started seeing exploitation attempts aimed at a CrushFTP vulnerability tracked as CVE-2025-2825 and CVE-2025-31161.
Vulnerabilities
Apple has released a hefty round of security updates for its desktop and mobile products, patching two recent zero-days in older iPhone models.
Vulnerabilities
A Windows NTLM vulnerability patched in March has been exploited in attacks targeting government and private institutions.
Vulnerabilities
Malware & Threats
Data Breaches
Security Architecture
Vulnerabilities
Threat Intelligence