Cisco confirms active exploitation of ISE and ISE-PIC flaws
Cisco confirms active exploitation of ISE and ISE-PIC flaws Pierluigi Paganini July 22, 2025 Cisco warns of active exploits targeting...
Read more →Category: Securityaffairs
new ToolShell attacks target enterprises
SharePoint under fire: new ToolShell attacks target enterprises Pierluigi Paganini July 22, 2025 While SentinelOne did not attribute the attack...
Read more →
CrushFTP Zero-Day actively exploited at least since July 18
CrushFTP zero-day actively exploited at least since July 18 Pierluigi Paganini July 22, 2025 Hackers exploit CrushFTP zero-day, tracked as...
Read more →
Hardcoded credentials found in HPE Aruba Instant On Wi-Fi devices
Hardcoded credentials found in HPE Aruba Instant On Wi-Fi devices Pierluigi Paganini July 22, 2025 Hardcoded credentials in HPE Aruba...
Read more →
MuddyWater deploys new DCHSpy variants amid Iran-Israel conflict
MuddyWater deploys new DCHSpy variants amid Iran-Israel conflict Pierluigi Paganini July 21, 2025 Iran-linked APT MuddyWater is deploying new DCHSpy...
Read more →
U.S. CISA urges to immediately patch Microsoft SharePoint flaw adding it to its Known Exploited Vulnerabilities catalog
U.S. CISA urges to immediately patch Microsoft SharePoint flaw adding it to its Known Exploited Vulnerabilities catalog Pierluigi Paganini July 21,...
Read more →
U.S. CISA urges to immediately patch Microsoft SharePoint flaw adding it to its Known Exploited Vulnerabilities catalog
U.S. CISA urges to immediately patch Microsoft SharePoint flaw adding it to its Known Exploited Vulnerabilities catalog Pierluigi Paganini July 21,...
Read more →
Microsoft issues emergency patches for SharePoint zero-days exploited in “ToolShell” attacks
Microsoft issues emergency patches for SharePoint zero-days exploited in “ToolShell” attacks Pierluigi Paganini July 21, 2025 Microsoft patched an exploited...
Read more →
SharePoint zero-day CVE-2025-53770 actively exploited in the wild
SharePoint zero-day CVE-2025-53770 actively exploited in the wild Pierluigi Paganini July 21, 2025 Microsoft warns of ongoing active exploitation of...
Read more →
Singapore warns China-linked group UNC3886 targets its critical infrastructure
Singapore warns China-linked group UNC3886 targets its critical infrastructure Pierluigi Paganini July 20, 2025 Singapore says China-linked group UNC3886 targeted...
Read more →
U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Fortinet FortiWeb flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini July 20, 2025 U.S. Cybersecurity and Infrastructure...
Read more →
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 54
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape KongTuke...
Read more →