Vulnerabilities CISA Urges Urgent Patching for Exploited CentreStack, Windows Zero-Days CISA has added fresh CentreStack and Windows CLFS vulnerabilities to the Known Exploited Vulnerabilities catalog. Ionut ArghireApril 9, 2025
Vulnerabilities ESET Vulnerability Exploited for Stealthy Malware Execution A sophisticated APT tracked as ToddyCat has exploited an ESET DLL search order hijacking vulnerability for malware delivery. Ionut ArghireApril 8, 2025
Vulnerabilities Exploited Vulnerability Puts 5,000 Ivanti VPN Appliances at Risk More than 5,000 Ivanti Connect Secure appliances are vulnerable to attacks exploiting CVE-2025-22457, which has been used by Chinese hackers. Ionut ArghireApril 8, 2025
Mobile & Wireless Android Update Patches Two Exploited Vulnerabilities Android’s latest security update resolves two exploited Kernel vulnerabilities, as well as critical-severity bugs. Ionut ArghireApril 8, 2025
Malware & Threats Threat Actors Setting Up Persistent Access to Hosts Hacked in CrushFTP Attacks Huntress has shared details on the post-exploitation activities of threat actors targeting the recent CrushFTP vulnerability. Eduard KovacsApril 8, 2025
Vulnerabilities Two CVEs, One Critical Flaw: Inside the CrushFTP Vulnerability Controversy Two CVEs now exist for an actively exploited CrushFTP vulnerability and much of the security industry is using the ‘wrong one’. Eduard KovacsApril 3, 2025
Network Security Questions Remain Over Attacks Causing DrayTek Router Reboots DrayTek has shared some clarifications regarding the recent attacks causing router reboots, but some questions remain unanswered. Eduard KovacsApril 2, 2025
Vulnerabilities CrushFTP Blames Security Firms for Fast Exploitation of Vulnerability Shadowserver has started seeing exploitation attempts aimed at a CrushFTP vulnerability tracked as CVE-2025-2825 and CVE-2025-31161. Eduard KovacsApril 1, 2025
Vulnerabilities Apple Patches Recent Zero-Days in Older iPhones Apple has released a hefty round of security updates for its desktop and mobile products, patching two recent zero-days in older iPhone models. Ionut ArghireApril 1, 2025
Vulnerabilities Firefox Affected by Flaw Similar to Chrome Zero-Day Exploited in Russia Firefox developers have determined that their browser is affected by a vulnerability similar to the recent Chrome sandbox escape zero-day. Eduard KovacsMarch 28, 2025
Vulnerabilities Critical Next.js Vulnerability in Hacker Crosshairs Threat actors have started probing servers impacted by a critical-severity vulnerability in the web application development framework Next.js. Ionut ArghireMarch 26, 2025
Network Security Vulnerability Exploitation Possibly Behind Widespread DrayTek Router Reboots DrayTek routers around the world are rebooting and the vendor’s statement suggests that it may involve the exploitation of a vulnerability. Eduard KovacsMarch 25, 2025
Vulnerabilities CISA Warns of Exploited Nakivo Vulnerability CISA has added an absolute path traversal bug in Nakivo Backup and Replication to its Known Exploited Vulnerabilities list. Ionut ArghireMarch 20, 2025
Vulnerabilities Hackers Target Cisco Smart Licensing Utility Vulnerabilities SANS is seeing attempts to exploit two critical Cisco Smart Licensing Utility vulnerabilities tracked as CVE-2024-20439 and CVE-2024-20440. Eduard KovacsMarch 20, 2025
Mobile & Wireless Paragon Spyware Attacks Exploited WhatsApp Zero-Day Attacks involving Paragon’s Graphite spyware involved a WhatsApp zero-day that could be exploited without any user interaction. Eduard KovacsMarch 20, 2025
Artificial Intelligence ChatGPT Tool Vulnerability Exploited Against US Government Organizations A year-old vulnerability in a third-party ChatGPT tool is being exploited against financial entities and US government organizations. Ionut ArghireMarch 18, 2025
Malware & Threats Unpatched Edimax Camera Flaw Exploited Since at Least May 2024 A recently disclosed Edimax zero-day vulnerability has been exploited in the wild by Mirai botnets for nearly a year. Eduard KovacsMarch 13, 2025
Malware & Threats Grafana Flaws Likely Targeted in Broad SSRF Exploitation Campaign Threat actors are likely targeting Grafana path traversal bugs for reconnaissance in a SSRF exploitation campaign targeting popular platforms. Ionut ArghireMarch 13, 2025
Vulnerabilities Newly Patched Windows Zero-Day Exploited for Two Years Microsoft on Tuesday patched a zero-day vulnerability in the Windows Win32 kernel that has been exploited since March 2023. Ionut ArghireMarch 12, 2025
IoT Security Edimax Says No Patches Coming for Zero-Day Exploited by Botnets Edimax is aware that CVE-2025-1316 has been exploited in the wild, but the impacted devices were discontinued over a decade ago. Eduard KovacsMarch 11, 2025