CERT

Fortinet FortiWeb Authentication Bypass and Command Injection Vulnerability (CVE-2025-64446/CVE-2025-58034) Notice

AndyC 21 November 2025

Overview Recently, NSFOCUS CERT detected that Fortinet issued a security bulletin to fix the FortiWeb authentication bypass and command...

The power of low-tech in a high-tech world

JumpServer Connection Token Improper Authentication Vulnerability (CVE-2025-62712) Notice

AndyC 7 November 2025

Overview Recently, NSFOCUS CERT detected that JumpServer issued a security bulletin to fix the JumpServer connection token improper authentication...

7 Android 16 additions that are quietly working for you

Apache Tomcat Path Traversal Vulnerability (CVE-2025-55752) Notice

AndyC 29 October 2025

Overview Recently, NSFOCUS CERT detected that Apache issued a security bulletin to fix the Apache Tomcat path traversal vulnerability...

How to make workers happier with less pay

Samba WINS Command Injection Vulnerability (CVE-2025-10230) Notice

AndyC 18 October 2025

Overview Recently, NSFOCUS CERT detected that Samba released a security update to fix the Samba WINS command injection vulnerability (CVE-2025-10230);...

Amazon invents another robot — this time with feeling!

Ivanti Endpoint Manager Mobile Authentication Bypass and Remote Code Execution Vulnerability (CVE-2025-4427/CVE-2025-4428)

AndyC 16 May 2025

Recently, NSFOCUS CERT detected that Ivanti issued a security advisory to fix the authentication bypass and remote code execution vulnerabilities...

CERT

Fortinet FortiWeb Authentication Bypass and Command Injection Vulnerability (CVE-2025-64446/CVE-2025-58034) Notice

JumpServer Connection Token Improper Authentication Vulnerability (CVE-2025-62712) Notice

Apache Tomcat Path Traversal Vulnerability (CVE-2025-55752) Notice

Samba WINS Command Injection Vulnerability (CVE-2025-10230) Notice

Ivanti Endpoint Manager Mobile Authentication Bypass and Remote Code Execution Vulnerability (CVE-2025-4427/CVE-2025-4428)

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

Randall Munroe’s XKCD ‘Fifteen Years’

Google Shutting Down Dark Web Report Met with Mixed Reactions

Cracked Software and YouTube Videos Spread CountLoader and GachiLoader Malware

Containing the Inevitable: What Cyber Leaders Must Prepare for in 2026

Containing the Inevitable: What Cyber Leaders Must Prepare for in 2026

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed