exploited Archives

Vulnerabilities

CISA Warns of Two Exploited TeleMessage Vulnerabilities

CISA says two more vulnerabilities in the messaging application TeleMessage TM SGNL have been exploited in the wild.

Ionut ArghireJuly 2, 2025

Vulnerabilities

Thousands of Citrix NetScaler Instances Unpatched Against Exploited Vulnerabilities

Many Citrix NetScaler systems are exposed to attacks exploiting the vulnerabilities tracked as CVE-2025-5777 and CVE-2025-6543.

Ionut ArghireJuly 1, 2025

Vulnerabilities

Chrome 138 Update Patches Zero-Day Vulnerability

Google has released a Chrome 138 update that patches a high-severity vulnerability with an exploit in the wild.

Ionut ArghireJuly 1, 2025

Vulnerabilities

Evidence Suggests Exploitation of CitrixBleed 2 Vulnerability

The Citrix NetScaler vulnerability tracked as CitrixBleed 2 and CVE-2025–5777 may be exploited in the wild for initial access.

Eduard KovacsJune 27, 2025

Vulnerabilities

CISA Warns AMI BMC Vulnerability Exploited in the Wild

CISA is urging federal agencies to patch a recent AMI BMC vulnerability and a half-a-decade-old bug in FortiOS by July 17.

Ionut ArghireJune 26, 2025

Vulnerabilities

Critical Citrix NetScaler Flaw Exploited as Zero-Day

Citrix has released patches for a critical vulnerability in NetScaler ADC and NetScaler Gateway exploited as a zero-day.

Ionut ArghireJune 26, 2025

Vulnerabilities

Motors Theme Vulnerability Exploited to Hack WordPress Websites

Threat actors are exploiting a critical-severity vulnerability in Motors theme for WordPress to change arbitrary user passwords.

Ionut ArghireJune 20, 2025

Vulnerabilities

FreeType Zero-Day Found by Meta Exploited in Paragon Spyware Attacks

WhatsApp told SecurityWeek that it linked the exploited FreeType vulnerability CVE-2025-27363 to a Paragon exploit.

Eduard KovacsJune 20, 2025

Vulnerabilities

Linux Security: New Flaws Allow Root Access, CISA Warns of Old Bug Exploitation

Qualys has disclosed two Linux vulnerabilities that can be chained for full root access, and CISA added a flaw to its KEV catalog.

Eduard KovacsJune 18, 2025

Vulnerabilities

Chrome 137 Update Patches High-Severity Vulnerabilities

Google has released a Chrome 137 update to resolve two memory bugs in the browser’s V8 and Profiler components.

Ionut ArghireJune 18, 2025

Vulnerabilities

Zyxel Firewall Vulnerability Again in Attacker Crosshairs

GreyNoise warns of a spike in exploitation attempts targeting a two-year-old vulnerability in Zyxel firewalls.

Ionut ArghireJune 17, 2025

Vulnerabilities

Organizations Warned of Vulnerability Exploited Against Discontinued TP-Link Routers

CISA warns that a vulnerability impacting multiple discontinued TP-Link router models is exploited in the wild.

Ionut ArghireJune 17, 2025

Malware & Threats

Recent Langflow Vulnerability Exploited by Flodrix Botnet

A critical Langflow vulnerability tracked as CVE-2025-3248 has been exploited to ensnare devices in the Flodrix botnet.

Eduard KovacsJune 17, 2025

Malware & Threats

SimpleHelp Vulnerability Exploited Against Utility Billing Software Users

CISA warns that vulnerable SimpleHelp RMM instances have been exploited against a utility billing software provider’s customers.

Ionut ArghireJune 13, 2025

Email Security

Exploited Vulnerability Impacts Over 80,000 Roundcube Servers

Exploitation of a critical-severity RCE vulnerability in Roundcube started only days after a patch was released.

Ionut ArghireJune 10, 2025

Malware & Threats

Mirai Botnets Exploiting Wazuh Security Platform Vulnerability

CVE-2025-24016, a critical remote code execution vulnerability affecting Wazuh servers, has been exploited by Mirai botnets.

Eduard KovacsJune 9, 2025

Vulnerabilities

vBulletin Vulnerability Exploited in the Wild

Exploitation of the vBulletin vulnerability tracked as CVE-2025-48827 and CVE-2025-48828 started shortly after disclosure.

Eduard KovacsJune 2, 2025

Malware & Threats

Companies Warned of Commvault Vulnerability Exploitation

CISA warns companies of a widespread campaign targeting a Commvault vulnerability to hack Azure environments.

Ionut ArghireMay 23, 2025

Malware & Threats

Cityworks Zero-Day Exploited by Chinese Hackers in US Local Government Attacks

A Chinese threat actor exploited a zero-day vulnerability in Trimble Cityworks to hack local government entities in the US.

Ionut ArghireMay 23, 2025

Malware & Threats

Chinese Spies Exploit Ivanti Vulnerabilities Against Critical Sectors

A Chinese espionage group has been chaining two recent Ivanti EPMM vulnerabilities in attacks against organizations in multiple critical sectors.

Ionut ArghireMay 23, 2025

SECURITYWEEK NETWORK:

ICS:

All posts tagged "exploited"

Vulnerabilities

CISA Warns of Two Exploited TeleMessage Vulnerabilities

Vulnerabilities

Thousands of Citrix NetScaler Instances Unpatched Against Exploited Vulnerabilities

Vulnerabilities

Chrome 138 Update Patches Zero-Day Vulnerability

Vulnerabilities

Evidence Suggests Exploitation of CitrixBleed 2 Vulnerability

Vulnerabilities

CISA Warns AMI BMC Vulnerability Exploited in the Wild

Vulnerabilities

Critical Citrix NetScaler Flaw Exploited as Zero-Day

Vulnerabilities

Motors Theme Vulnerability Exploited to Hack WordPress Websites

Vulnerabilities

FreeType Zero-Day Found by Meta Exploited in Paragon Spyware Attacks

Vulnerabilities

Linux Security: New Flaws Allow Root Access, CISA Warns of Old Bug Exploitation

Vulnerabilities

Chrome 137 Update Patches High-Severity Vulnerabilities

Vulnerabilities

Zyxel Firewall Vulnerability Again in Attacker Crosshairs

Vulnerabilities

Organizations Warned of Vulnerability Exploited Against Discontinued TP-Link Routers

Malware & Threats

Recent Langflow Vulnerability Exploited by Flodrix Botnet

Malware & Threats

SimpleHelp Vulnerability Exploited Against Utility Billing Software Users

Email Security

Exploited Vulnerability Impacts Over 80,000 Roundcube Servers

Malware & Threats

Mirai Botnets Exploiting Wazuh Security Platform Vulnerability

Vulnerabilities

vBulletin Vulnerability Exploited in the Wild

Malware & Threats

Companies Warned of Commvault Vulnerability Exploitation

Malware & Threats

Cityworks Zero-Day Exploited by Chinese Hackers in US Local Government Attacks

Malware & Threats

Chinese Spies Exploit Ivanti Vulnerabilities Against Critical Sectors

Featured

IoT Security

Millions of Cars Exposed to Remote Hacking via PerfektBlue Attack

Data Breaches

Nippon Steel Subsidiary Blames Data Breach on Zero-Day Attack

Nation-State

Alleged Chinese State Hacker Wanted by US Arrested in Italy

Artificial Intelligence

The Wild West of Agentic AI – An Attack Surface CISOs Can’t Afford to Ignore

Network Security

Exploits, Technical Details Released for CitrixBleed2 Vulnerability

Cybercrime

Hunters International Shuts Down, Offers Free Decryptors as It Morphs Into World Leaks

Uncategorized

Ingram Micro Scrambling to Restore Systems After Ransomware Attack

Latest News

Mobile & Wireless

eSIM Hack Allows for Cloning, Spying

Ransomware

Ingram Micro Restores Systems Impacted by Ransomware

Cybercrime

Four Arrested in UK Over M&S, Co-op Cyberattacks

Data Breaches

Qantas Confirms 5.7 Million Impacted by Data Breach

Cybersecurity Funding

Booz Allen Invests in Machine Identity Firm Corsha

Artificial Intelligence

What Can Businesses Do About Ethical Dilemmas Posed by AI?

Cybersecurity Funding

AirMDR Raises $15.5 Million for MDR Solution

Daily Briefing Newsletter