Vulnerabilities CISA Warns of Two Exploited TeleMessage Vulnerabilities CISA says two more vulnerabilities in the messaging application TeleMessage TM SGNL have been exploited in the wild. Ionut ArghireJuly 2, 2025
Vulnerabilities Thousands of Citrix NetScaler Instances Unpatched Against Exploited Vulnerabilities Many Citrix NetScaler systems are exposed to attacks exploiting the vulnerabilities tracked as CVE-2025-5777 and CVE-2025-6543. Ionut ArghireJuly 1, 2025
Vulnerabilities Chrome 138 Update Patches Zero-Day Vulnerability Google has released a Chrome 138 update that patches a high-severity vulnerability with an exploit in the wild. Ionut ArghireJuly 1, 2025
Vulnerabilities Evidence Suggests Exploitation of CitrixBleed 2 Vulnerability The Citrix NetScaler vulnerability tracked as CitrixBleed 2 and CVE-2025–5777 may be exploited in the wild for initial access. Eduard KovacsJune 27, 2025
Vulnerabilities CISA Warns AMI BMC Vulnerability Exploited in the Wild CISA is urging federal agencies to patch a recent AMI BMC vulnerability and a half-a-decade-old bug in FortiOS by July 17. Ionut ArghireJune 26, 2025
Vulnerabilities Critical Citrix NetScaler Flaw Exploited as Zero-Day Citrix has released patches for a critical vulnerability in NetScaler ADC and NetScaler Gateway exploited as a zero-day. Ionut ArghireJune 26, 2025
Vulnerabilities Motors Theme Vulnerability Exploited to Hack WordPress Websites Threat actors are exploiting a critical-severity vulnerability in Motors theme for WordPress to change arbitrary user passwords. Ionut ArghireJune 20, 2025
Vulnerabilities FreeType Zero-Day Found by Meta Exploited in Paragon Spyware Attacks WhatsApp told SecurityWeek that it linked the exploited FreeType vulnerability CVE-2025-27363 to a Paragon exploit. Eduard KovacsJune 20, 2025
Vulnerabilities Linux Security: New Flaws Allow Root Access, CISA Warns of Old Bug Exploitation Qualys has disclosed two Linux vulnerabilities that can be chained for full root access, and CISA added a flaw to its KEV catalog. Eduard KovacsJune 18, 2025
Vulnerabilities Chrome 137 Update Patches High-Severity Vulnerabilities Google has released a Chrome 137 update to resolve two memory bugs in the browser’s V8 and Profiler components. Ionut ArghireJune 18, 2025
Vulnerabilities Zyxel Firewall Vulnerability Again in Attacker Crosshairs GreyNoise warns of a spike in exploitation attempts targeting a two-year-old vulnerability in Zyxel firewalls. Ionut ArghireJune 17, 2025
Vulnerabilities Organizations Warned of Vulnerability Exploited Against Discontinued TP-Link Routers CISA warns that a vulnerability impacting multiple discontinued TP-Link router models is exploited in the wild. Ionut ArghireJune 17, 2025
Malware & Threats Recent Langflow Vulnerability Exploited by Flodrix Botnet A critical Langflow vulnerability tracked as CVE-2025-3248 has been exploited to ensnare devices in the Flodrix botnet. Eduard KovacsJune 17, 2025
Malware & Threats SimpleHelp Vulnerability Exploited Against Utility Billing Software Users CISA warns that vulnerable SimpleHelp RMM instances have been exploited against a utility billing software provider’s customers. Ionut ArghireJune 13, 2025
Email Security Exploited Vulnerability Impacts Over 80,000 Roundcube Servers Exploitation of a critical-severity RCE vulnerability in Roundcube started only days after a patch was released. Ionut ArghireJune 10, 2025
Malware & Threats Mirai Botnets Exploiting Wazuh Security Platform Vulnerability CVE-2025-24016, a critical remote code execution vulnerability affecting Wazuh servers, has been exploited by Mirai botnets. Eduard KovacsJune 9, 2025
Vulnerabilities vBulletin Vulnerability Exploited in the Wild Exploitation of the vBulletin vulnerability tracked as CVE-2025-48827 and CVE-2025-48828 started shortly after disclosure. Eduard KovacsJune 2, 2025
Malware & Threats Companies Warned of Commvault Vulnerability Exploitation CISA warns companies of a widespread campaign targeting a Commvault vulnerability to hack Azure environments. Ionut ArghireMay 23, 2025
Malware & Threats Cityworks Zero-Day Exploited by Chinese Hackers in US Local Government Attacks A Chinese threat actor exploited a zero-day vulnerability in Trimble Cityworks to hack local government entities in the US. Ionut ArghireMay 23, 2025
Malware & Threats Chinese Spies Exploit Ivanti Vulnerabilities Against Critical Sectors A Chinese espionage group has been chaining two recent Ivanti EPMM vulnerabilities in attacks against organizations in multiple critical sectors. Ionut ArghireMay 23, 2025