Veeam fixed critical Backup & Replication flaw CVE-2025-23120
Veeam fixed critical Backup & Replication flaw CVE-2025-23120 Pierluigi Paganini March 20, 2025 Veeam released security patches for a critical Backup & Replication vulnerability that…
Veeam fixed critical Backup & Replication flaw CVE-2025-23120 Pierluigi Paganini March 20, 2025 Veeam released security patches for a critical Backup & Replication vulnerability that…
U.S. CISA adds Edimax IC-7100 IP Camera, NAKIVO, and SAP NetWeaver AS Java flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini March 20, 2025 U.S.…
CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT Pierluigi Paganini March 20, 2025 CERT-UA warns of a cyber campaign…
WhatsApp fixed zero-day flaw used to deploy Paragon Graphite spyware Pierluigi Paganini March 20, 2025 WhatsApp fixed a zero-click, zero-day vulnerability used to install Paragon’s…
California Cryobank, the largest US sperm bank, disclosed a data breach Pierluigi Paganini March 19, 2025 California Cryobank, the largest US sperm bank, suffered a…
Rules File Backdoor: AI Code Editors exploited for silent supply chain attacks Pierluigi Paganini March 19, 2025 The Rules File Backdoor attack targets AI code…
U.S. CISA adds Fortinet FortiOS/FortiProxy and GitHub Action flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini March 19, 2025 U.S. Cybersecurity and Infrastructure Security Agency (CISA)…
Nation-state actors and cybercrime gangs abuse malicious .lnk files for espionage and data theft Pierluigi Paganini March 18, 2025 11 state-sponsored APTs exploit malicious .lnk…
ChatGPT SSRF bug quickly becomes a favorite attack vector Pierluigi Paganini March 18, 2025 Threat actors exploit a server-side request forgery (SSRF) flaw, tracked as…
GitHub Action tj-actions/changed-files was compromised in supply chain attack Pierluigi Paganini March 18, 2025 The GitHub Action tj-actions/changed-files was compromised, enabling attackers to extract secrets…
New StilachiRAT uses sophisticated techniques to avoid detection Pierluigi Paganini March 18, 2025 Microsoft discovered a new remote access trojan (RAT), dubbed StilachiRAT, that uses…
Pierluigi Paganini March 17, 2025 Apache Tomcat Vulnerability Actively Exploited Just 30 Hours After Public Disclosure Threat actors began exploiting a recently disclosed Apache Tomcat…