Security Intelligence

Oracle EBS flaw exploited in active ransomware campaigns

CISA adds Oracle E-Business Suite flaw CVE-2025-61882 to KEV list. Actively exploited in ransomware campaigns—patch now...

Security Intelligence

Legacy vulnerabilities remain prime targets of exploitation

Legacy vulnerabilities like Shellshock and IE ActiveX flaws remain prime targets. Learn why old CVEs persist in CISA’s...

Security Intelligence

Critical Redis vulnerability affects versions with Lua scripting enabled

Redis has patched a critical Lua scripting vulnerability (CVE-2025-49844) with a CVSS 10.0 rating. Learn how to...

Security Intelligence

Legacy Hikvision camera vulnerability resurfaces in active exploits

Hikvision CVE-2017-7921 flaw resurfaces in active exploits. Attackers target unpatched IP cameras, stealing data via...

Security Intelligence

Executive extortion campaign claims Oracle EBS data theft

Executives hit by Oracle EBS-related extortion campaign—fake data theft claims, FIN11 links, and credential abuse...

Security Intelligence

Broadcom patches VMware flaw used by China-based threat actor

Broadcom patches VMware Tools flaw CVE-2025-41244 exploited by China-based UNC5174. Update VMware products now to...

Security Intelligence

CISA adds five actively exploited vulnerabilities to KEV catalog

CISA adds 5 new exploited flaws to KEV, including Cisco, GoAnywhere, Sudo, Adminer & Libraesva. Patches and mitigations...

Security Intelligence

Potentially Unwanted Applications (PUAs) weaponized for covert delivery

Field Effect's experts uncovered a broader malware distribution campaign leveraging digitally signed binaries,...

Security Intelligence

Cisco ASA and FTD VPN flaws patched and confirmed exploited

Cisco patches ASA & FTD VPN flaws CVE-2025-20333 & CVE-2025-20362, confirmed exploited as zero-days. Agencies urged to...

Security Intelligence

SolarWinds issues 3rd fix for Web Help Desk issue after patch bypasses

SolarWinds releases hotfix for CVE-2025-26399, a critical Web Help Desk flaw. Learn what’s affected and how to secure...

Security Intelligence

SonicWall SMA firmware update addresses persistent malware

SonicWall releases new firmware for SMA 100 Series, protecting against the OVERSTEP malware with stronger security and...

Security Intelligence

Collins Aerospace software breach causes airport disruptions throughout the weekend

Ransomware attack on Collins Aerospace's ARINC cMUSE software disrupts major EU airports, forcing manual check-in,...