Vulnerabilities CISA Warns of Ivanti EPM Vulnerability Exploitation CISA has added three critical-severity flaws in Ivanti EPM to its Known Exploited Vulnerabilities catalog. Ionut ArghireMarch 11, 2025
Malware & Threats Critical PHP Vulnerability Under Mass Exploitation GreyNoise warns of mass exploitation of a critical vulnerability in PHP leading to remote code execution on vulnerable servers. Ionut ArghireMarch 10, 2025
IoT Security Edimax Camera Zero-Day Disclosed by CISA Exploited by Botnets Multiple Mirai-based botnets are exploiting CVE-2025-1316, an Edimax IP camera vulnerability that allows remote command execution. Eduard KovacsMarch 7, 2025
Vulnerabilities Exploited VMware ESXi Flaws Put Many at Risk of Ransomware, Other Attacks Scans show that tens of thousands of VMware ESXi instances are affected by CVE-2025-22224 and other vulnerabilities disclosed recently as zero-days. Eduard KovacsMarch 6, 2025
Vulnerabilities Broadcom Patches 3 VMware Zero-Days Exploited in the Wild Broadcom patched VMware zero-days CVE-2025-22224, CVE-2025-22225 and CVE-2025-22226 after Microsoft warned it of exploitation. Eduard KovacsMarch 4, 2025
Mobile & Wireless Google Patches Pair of Exploited Vulnerabilities in Android Android’s March 2025 security update addresses over 40 vulnerabilities, including two actively exploited in the wild. Ionut ArghireMarch 4, 2025
Vulnerabilities Exploitation Long Known for Most of CISA’s Latest KEV Additions Exploitation has been known for months or years for most of the latest vulnerabilities added by CISA to its KEV catalog. Eduard KovacsMarch 4, 2025
Vulnerabilities Sites of Major Orgs Abused in Spam Campaign Exploiting Virtual Tour Software Flaw XSS vulnerability allowed a threat actor to redirect users to arbitrary domains. Eduard KovacsFebruary 27, 2025
Vulnerabilities CISA Warns of Attacks Exploiting Oracle Agile PLM Vulnerability CISA has added CVE-2024-20953, an Oracle Agile PLM vulnerability patched in January 2024, to its KEV catalog. Eduard KovacsFebruary 25, 2025
Vulnerabilities CISA Warns of Attacks Exploiting Craft CMS Vulnerability CISA has added a Craft CMS flaw tracked as CVE-2025-23209 to its Known Exploited Vulnerabilities (KEV) catalog. Eduard KovacsFebruary 21, 2025
Vulnerabilities Second Recently Patched Flaw Exploited to Hack Palo Alto Firewalls Palo Alto Networks is warning customers that a second vulnerability patched in February is being exploited in attacks. Eduard KovacsFebruary 21, 2025
Vulnerabilities Microsoft Patches Exploited Power Pages Vulnerability Microsoft has patched CVE-2025-24989, a Power Pages privilege escalation vulnerability that has been exploited in attacks. Eduard KovacsFebruary 20, 2025
Vulnerabilities Palo Alto Networks Confirms Exploitation of Firewall Vulnerability Palo Alto Networks has confirmed that a recently patched firewall vulnerability tracked as CVE-2025-0108 is being actively exploited. Eduard KovacsFebruary 18, 2025
Vulnerabilities SonicWall Firewall Vulnerability Exploited After PoC Publication The exploitation of a recent SonicWall vulnerability has started shortly after proof-of-concept (PoC) code was published. Ionut ArghireFebruary 14, 2025
Vulnerabilities New Windows Zero-Day Exploited by Chinese APT: Security Firm ClearSky Cyber Security says it has seen a new Windows zero-day being exploited by a Chinese APT named Mustang Panda. Eduard KovacsFebruary 14, 2025
Vulnerabilities Hackers Exploit Palo Alto Firewall Vulnerability Day After Disclosure Attempts to exploit CVE-2024-0108, an authentication bypass vulnerability in Palo Alto firewalls, started one day after disclosure. Eduard KovacsFebruary 14, 2025
Vulnerabilities Exploitation of Old ThinkPHP, OwnCloud Vulnerabilities Surges Threat actors are increasingly exploiting two old vulnerabilities in ThinkPHP and OwnCloud in their attacks. Ionut ArghireFebruary 13, 2025
ICS/OT Trimble Cityworks Customers Warned of Zero-Day Exploitation Trimble Cityworks is affected by a zero-day vulnerability that has been exploited in attacks involving the delivery of malware. Eduard KovacsFebruary 7, 2025
Malware & Threats Russian Hackers Exploited 7-Zip Zero-Day Against Ukraine Russian threat groups have been observed exploiting a zero-day vulnerability in 7-Zip against Ukrainian entities. Ionut ArghireFebruary 5, 2025
Vulnerabilities CISA Issues Exploitation Warning for .NET Vulnerability CISA has added CVE-2024-29059, a flaw affecting Microsoft .NET, to its Known Exploited Vulnerabilities catalog. Eduard KovacsFebruary 5, 2025