Security Intelligence

CISA adds four actively exploited vulnerabilities to KEV catalog

CISA adds four old-but-exploited flaws to KEV catalog. Patch MRLG, PHPMailer, Rails, and Zimbra now to reduce risk and...

Security Intelligence

IT provider Ingram Micro hit by SafePay ransomware

Ingram Micro hit by SafePay ransomware, disrupting global MSP supply chains. Attack exploited VPN flaws, causing...

Security Intelligence

China-based Houken observed targeting French organizations

China-based Houken exploited Ivanti CSA zero-days to breach French sectors. The campaign highlights rising threats from...

Security Intelligence

Canada orders Hikvision to cease operations

On June 27, 2025, the Canadian government announced its decision to order the surveillance technology supplier...

Security Intelligence

Cisco patches max-severity flaw in Identity Services Engine

Cisco patches critical ISE flaws (CVEs 2025-20281, -20282) allowing RCE as root. No workarounds—urgent updates required...

Security Intelligence

Citrix fixes another critical flaw, already exploited

Citrix fixes critical NetScaler flaw (CVE-2025-6543) under active attack; patch now to prevent remote DoS on...

Security Intelligence

Citrix addresses NetScaler vulnerabilities

Citrix patches critical NetScaler flaws, including CVE-2025-5777—akin to CitrixBleed—that could expose memory and...

Security Intelligence

Cybersecurity threats amid Middle East escalation

U.S.-Iran tensions raise cyber risks. Field Effect assesses threat level, risk to clients, and how MDR helps reduce...

Security Intelligence

Two public exploits for Linux, one observed in the wild

Exploits for three Linux vulnerabilities give attackers root access. One is active in the wild—patch now and audit...

Security Intelligence

Veeam addresses flaws in backup servers

Veeam patches critical flaws in backup software. Exploits risk data theft, privilege abuse. Update now and harden...

Security Intelligence

Malicious package disguised as a helper module for Chimera Sandbox

A malicious npm package mimicking Chimera Sandbox exposes risks in open-source supply chains—stealing cloud creds,...

Security Intelligence

Mitel MiCollab critical advisory; POC for flaws in Mitel SIP phones

Researchers published a POC exploit for critical Mitel SIP flaw; a second MiCollab flaw allows remote, unauthenticated...