Collaborate Disseminate
APT29 (aka Cozy Bear, aka Midnight Blizzard) is, once again, targeting European diplomats with fake invitations to wine-tasting events, Check Point researchers have shared. Cozy Bear uses wine-tastings and dinners as a lure In early 2024, Zscaler flagg… Continue reading Cozy Bear targets EU diplomats with wine-tasting invites (again)
The future of the Common Vulnerabilities and Exposures (CVE) program hangs in the balance: MITRE, the not-for-profit US organization that runs it, could lose the US federal funding that helps them maintain it. But others have been waiting in the wings … Continue reading Funding uncertainty may spell the end of MITRE’s CVE program
American car rental company Hertz has suffered a data breach linked to last year’s exploitation of Cleo zero-day vulnerabilities by a ransomware gang. The breach resulted in information of an unknown number of customers of Hertz and Hertz’s… Continue reading Hertz data breach: Customers in US, EU, UK, Australia and Canada affected
The Nagios Security Team has fixed three critical vulnerabilities affecting popular enterprise log management and analysis platform Nagios Log Server. About the flaws The vulnerabilities, discovered and reported by security researchers Seth Kraft and A… Continue reading Critical flaws fixed in Nagios Log Server
LLMs’ tendency to “hallucinate” code packages that don’t exist could become the basis for a new type of supply chain attack dubbed “slopsquatting” (courtesy of Seth Larson, Security Developer-in-Residence at the Pyth… Continue reading Package hallucination: LLMs may deliver malicious code to careless devs
A threat actor that has been using known old FortiOS vulnerabilities to breach FortiGate devices for years has also been leveraging a clever trick to maintain undetected read-only access to them after the original access vector was locked down, Fortine… Continue reading Hackers exploit old FortiGate vulnerabilities, use symlink trick to retain limited access to patched devices
US President Donald Trump has signed an Executive Order on Wednesday to revoke security clearance held by Chris Krebs, the former director of the Cybersecurity and Infrastructure Security Agency (CISA), and his colleagues at SentinelOne. “The Ord… Continue reading Trump orders revocation of security clearances for Chris Krebs, SentinelOne
Fortinet has released patches for flaws affecting many of its products, among them a critical vulnerability (CVE-2024-48887) in its FortiSwitch appliances that could allow unauthenticated attackers to gain access to and administrative privileges on vul… Continue reading FortiSwitch vulnerability may give attackers control over vulnerable devices (CVE-2024-48887)
WhatsApp users are urged to update the Windows client app to plug a serious security vulnerability (CVE-2025-30401) that may allow attackers to trick users into running malicious code. Meta classifies the vulnerability as a spoofing issue that makes al… Continue reading WhatsApp vulnerability could be used to infect Windows users with malware (CVE-2025-30401)
A critical RCE vulnerability (CVE-2025-30406) affecting the Gladinet CentreStack file-sharing/remote access platform has been added to CISA’s Known Exploited Vulnerabilities catalog on Tuesday. According to the vulnerability’s entry in NIST… Continue reading RCE flaw in MSP-friendly file sharing platform exploited by attackers (CVE-2025-30406)