Atlassian fixed critical flaws in Confluence and Crowd
Atlassian fixed critical flaws in Confluence and Crowd Pierluigi Paganini February 21, 2025 Australian software firm Atlassian patched 12 critical and high-severity flaws in Bamboo,…
Category: Securityaffairs
Salt Typhoon used custom malware JumbledPath to spy on U.S. telecom providers
Salt Typhoon used custom malware JumbledPath to spy U.S. telecom providers Pierluigi Paganini February 20, 2025 China-linked cyber espionage group Salt Typhoon uses custom malware…
NailaoLocker ransomware targets EU healthcare-related entities
NailaoLocker ransomware targets EU healthcare-related entities Pierluigi Paganini February 20, 2025 NailaoLocker ransomware is a new threat that targeted European healthcare organizations from June to…
Microsoft fixed actively exploited flaw in Power Pages
Microsoft fixed actively exploited flaw in Power Pages Pierluigi Paganini February 20, 2025 Microsoft addressed a privilege escalation vulnerability in Power Pages, the flaw is…
Citrix addressed NetScaler console privilege escalation flaw
Citrix addressed NetScaler console privilege escalation flaw Pierluigi Paganini February 20, 2025 Citrix addressed a high-severity privilege escalation vulnerability impacting NetScaler Console and NetScaler Agent…
Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks
Palo Alto Networks warns that CVE-2025-0111 flaw is actively exploited in attacks Pierluigi Paganini February 20, 2025 Palo Alto Networks warns that the vulnerability CVE-2025-0111…
Russia-linked APTs target Signal messenger
Russia-linked APTs target Signal messenger Pierluigi Paganini February 19, 2025 Russia-linked threat actors exploit Signal ‘s “linked devices” feature to hijack accounts, per Google Threat…
Venture capital firm Insight Partners discloses security breach
Venture capital firm Insight Partners discloses security breach Pierluigi Paganini February 19, 2025 Venture capital firm Insight Partners suffered a cyberattack involving unauthorized access to…
OpenSSH bugs allows Man-in-the-Middle and DoS Attacks
OpenSSH bugs allows Man-in-the-Middle and DoS Attacks Pierluigi Paganini February 19, 2025 Two OpenSSH vulnerabilities could allow machine-in-the-middle (MitM) and denial-of-service (DoS) attacks under certain…
U.S. CISA adds SonicWall SonicOS and Palo Alto PAN-OS flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds SonicWall SonicOS and Palo Alto PAN-OS flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February 19, 2025 U.S. Cybersecurity and Infrastructure…
Juniper Networks fixed a critical flaw in Session Smart Routers
Juniper Networks fixed a critical flaw in Session Smart Routers Pierluigi Paganini February 18, 2025 Juniper Networks has addressed a critical vulnerability, tracked as CVE-2025-21589,…
China-linked APT group Winnti targets Japanese organizations
China-linked APT group Winnti targets Japanese organizations since March 2024 Pierluigi Paganini February 18, 2025 China-linked threat actor Winnti targeted Japanese companies in the manufacturing,…