Collaborate Disseminate
Fortinet has released patches for a critical OS command injection vulnerability (CVE-2025-25256) in FortiSIEM, after practical exploit code surfaced in the wild. About CVE-2025-25256 FortiSIEM is a security information and event management platform use… Continue reading Fortinet warns about FortiSIEM vulnerability with in-the-wild exploit code (CVE-2025-25256)
FortiGuard Labs has reported a dramatic spike in exploitation attempts targeting Citrix Bleed 2, a critical buffer over‑read flaw (CVE‑2025‑5777) affecting Citrix NetScaler ADC (Application Delivery Controller) and Gateway devices. Since July 28, 2025,… Continue reading Netscaler vulnerability was exploited as zero-day for nearly two months (CVE-2025-6543)
The RomCom attackers aren’t the only ones that have been leveraging the newly unveiled WinRAR vulnerability (CVE-2025-8088) in zero-day attacks: according to Russian cybersecurity company BI.ZONE, a group tracked as Paper Werewolf has been using … Continue reading WinRAR zero-day was exploited by two threat actors (CVE-2025-8088)
SafeBreach researchers have released details on several vulnerabilities that could be exploited by attackers to crash Windows Active Directory domain controllers (DCs), one one of which (CVE-2025-32724) can also be leveraged to force public DCs to part… Continue reading Win-DDoS: Attackers can turn public domain controllers into DDoS agents
“In an Exchange hybrid deployment, an attacker who first gains administrative access to an on-premises Exchange server could potentially escalate privileges within the organization’s connected cloud environment without leaving easily detectable a… Continue reading Microsoft urges admins to plug severe Exchange security hole (CVE-2025-53786)
Akira ransomware affiliates are not leveraging an unknown, zero-day vulnerability in SonicWall Gen 7 firewalls to breach corporate networks, the security vendor shared today. “Instead, there is a significant correlation with threat activity relat… Continue reading SonicWall: Attackers did not exploit zero-day vulnerability to compromise Gen 7 firewalls
Adobe has released an emergency security update for Adobe Experience Manager Forms on Java Enterprise Edition (JEE), which fix two critical vulnerabilities (CVE-2025-54253, CVE-2025-54254) with a publicly available proof-of-concept (PoC) exploit. Detai… Continue reading Adobe patches critical Adobe Experience Manager Forms vulnerabilities with public PoC
Unauthenticated command injection vulnerabilities (CVE-2025-54948, CVE-2025-54987) affecting the on-premise version of Trend Micro’s Apex One endpoint security platform are being probed by attackers, the company has warned on Wednesday. Unfortuna… Continue reading Trend Micro Apex One flaws exploted in the wild (CVE-2025-54948, CVE-2025-54987)
A set of firmware vulnerabilities affecting 100+ Dell laptop models widely used in government settings and by the cybersecurity industry could allow attackers to achieve persistent access even across Windows reinstalls, Cisco Talos researchers have dis… Continue reading Millions of Dell laptops could be persistently backdoored in ReVault attacks
Microsoft is working on a AI agent whose main goal is autonomous malware detection and the prototype – dubbed Project Ire – is showing great potential, the company has announced on Tuesday. Tested on a dataset of known malicious and benign … Continue reading Project Ire: Microsoft’s autonomous malware detection AI agent