Experts warn of actively exploited FreePBX zero-day
Experts warn of actively exploited FreePBX zero-day Pierluigi Paganini August 29, 2025 Sangoma warns of an actively exploited FreePBX zero-day affecting systems with publicly exposed…
Category: Securityaffairs
Salesloft Drift breach hits all integrations
Google: Salesloft Drift breach hits all integrations Pierluigi Paganini August 29, 2025 Google warns that Salesloft Drift OAuth breach affects all integrations, not just Salesforce.…
Dutch intelligence warns that China-linked APT Salt Typhoon targeted local critical infrastructure
Dutch intelligence warn that China-linked APT Salt Typhoon targeted local critical infrastructure Pierluigi Paganini August 29, 2025 Dutch intelligence reports Chinese cyber spies (Salt Typhoon,…
200 Swedish municipalities impacted by a major cyberattack on IT provider
200 Swedish municipalities impacted by a major cyberattack on IT provider Pierluigi Paganini August 28, 2025 Cyberattack on Miljödata disrupted services in over 200 Swedish…
TransUnion discloses a data breach impacting over 4.4 million customers
TransUnion discloses a data breach impacting over 4.4 million customers Pierluigi Paganini August 28, 2025 TransUnion reported a data breach in which threat actors accessed…
NSA, NCSC, and allies detailed TTPs associated with Chinese APT actors targeting critical infrastructure Orgs
NSA, NCSC, and allies detailed TTPs associated with Chinese APT actors targeting critical infrastructure Orgs Pierluigi Paganini August 28, 2025 NSA and allies warn that…
China linked UNC6384 targeted diplomats by hijacking web traffic
China linked UNC6384 targeted diplomats by hijacking web traffic Pierluigi Paganini August 27, 2025 The China-linked APT group UNC6384 targeted diplomats by hijacking web traffic…
UNC6395 targets Salesloft in Drift OAuth token theft campaign
UNC6395 targets Salesloft in Drift OAuth token theft campaign Pierluigi Paganini August 28, 2025 Hackers breached Salesloft to steal OAuth/refresh tokens for Drift AI chat;…
Over 28,000 Citrix instances remain exposed to critical RCE flaw CVE-2025-7775
Over 28,000 Citrix instances remain exposed to critical RCE flaw CVE-2025-7775 Pierluigi Paganini August 27, 2025 Over 28,200 Citrix NetScaler ADC/Gateway instances remain exposed to…
U.S. CISA adds Citrix NetScaler flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Citrix NetScaler flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini August 27, 2025 U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Citrix…
Healthcare Services Group discloses 2024 data breach that impacted 624,496 people
Healthcare Services Group discloses 2024 data breach that impacted 624,496 people Pierluigi Paganini August 27, 2025 Healthcare Services Group suffered a 2024 breach, exposing personal…
ESET warns of PromptLock, the first AI-driven ransomware
ESET warns of PromptLock, the first AI-driven ransomware Pierluigi Paganini August 27, 2025 ESET found PromptLock, the first AI-driven ransomware, using OpenAI’s gpt-oss:20b via Ollama…