SolarWinds Serv-U hit by four critical RCE-level vulnerabilities

SolarWinds has fixed four critical vulnerabilities in its popular Serv-U file transfer solution, which is used by businesses and organizations of all sizes. If exploited, the flaws may allow attackers to create a system admin user and/or execute code a… Continue reading SolarWinds Serv-U hit by four critical RCE-level vulnerabilities

Reddit fined $19.5 million for failing to protect children’s personal data

The UK’s Information Commissioner’s Office (ICO) has fined Reddit $19.5 million after finding that the company failed to use children’s personal information lawfully, exposing them to inappropriate and harmful content. The investigation found that Redd… Continue reading Reddit fined $19.5 million for failing to protect children’s personal data

Ex-L3Harris executive sentenced to 87 months for selling stolen cyber-exploit trade secrets

Peter Williams, a former executive of Trenchant, L3Harris’ cyber division, has been sentenced to 87 months in prison by a federal judge in Washington, D.C., after pleading guilty to stealing and selling sensitive cyber-exploit trade secrets to a Russia… Continue reading Ex-L3Harris executive sentenced to 87 months for selling stolen cyber-exploit trade secrets

CISA flags exploited FileZen command injection bug, patch now! (CVE-2026-25108)

CISA has added CVE-2026-25108, an OS command injection vulnerability in Soliton Systems’ FileZen secure file transfer solution, to its Known Exploited Vulnerabilities (KEV) catalog. The vendor has confirmed active exploitation, stating it has rec… Continue reading CISA flags exploited FileZen command injection bug, patch now! (CVE-2026-25108)