Fortinet fixed two critical authentication-bypass vulnerabilities Pierluigi Paganini December 10, 2025 Fortinet patched 18 flaws, including two authentication-bypass bugs affecting FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager…
New EtherRAT backdoor surfaces in React2Shell attacks tied to North Korea Pierluigi Paganini December 10, 2025 NK-linked hackers are likely exploiting the React2Shell flaw to…
Microsoft Patch Tuesday security updates for December 2025 fixed an actively exploited zero-day Pierluigi Paganini December 10, 2025 Microsoft Patch Tuesday security updates for December…
U.S. CISA adds Microsoft Windows and WinRAR flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December 10, 2025 U.S. Cybersecurity and Infrastructure Security Agency…
Ivanti warns customers of new EPM flaw enabling remote code execution Pierluigi Paganini December 09, 2025 Ivanti warns users to address a newly disclosed Endpoint…
Broadside botnet hits TBK DVRs, raising alarms for maritime logistics Pierluigi Paganini December 09, 2025 Mirai-based Broadside botnet targets vulnerable TBK Vision DVRs, posing a…
Polish Police arrest 3 Ukrainians for possessing advanced hacking tools Pierluigi Paganini December 09, 2025 Poland arrested three Ukrainian nationals accused of using hacking devices…
FBI: Crooks manipulate online photos to fuel virtual kidnapping ransoms Pierluigi Paganini December 08, 2025 The FBI warns of criminals altering images shared on social…
Oracle EBS zero-day used by Clop to breach Barts Health NHS Pierluigi Paganini December 08, 2025 Clop ransomware stole data from Barts Health NHS after…
AWS: China-linked threat actors weaponized React2Shell hours after disclosure Pierluigi Paganini December 08, 2025 Multiple China-linked threat actors began exploiting the CVE-2025-55182, aka React2Shell flaw,…
U.S. CISA adds a Meta React Server Components flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December 08, 2025 U.S. Cybersecurity and Infrastructure Security Agency…
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Analysis of ShadowPad Attack…
