exploited

U.S. CISA adds Samsung mobile devices flaw to its Known Exploited Vulnerabilities catalog

AndyC 12 November 2025

U.S. CISA adds Samsung mobile devices flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November 11, 2025 U.S. Cybersecurity and...

Critical Triofox bug exploited to run malicious payloads via AV configuration

AndyC 12 November 2025

Critical Triofox bug exploited to run malicious payloads via AV configuration Pierluigi Paganini November 11, 2025 Hackers exploited Triofox flaw...

LANDFALL spyware exploited Samsung zero-day CVE-2025-21042 in Middle East attacks

AndyC 8 November 2025

LANDFALL spyware exploited Samsung zero-day CVE-2025-21042 in Middle East attacks Pierluigi Paganini November 07, 2025 A now-patched Samsung Galaxy flaw,...

U.S. CISA adds Gladinet CentreStack, and CWP Control Web Panel flaws to its Known Exploited Vulnerabilities catalog

AndyC 6 November 2025

U.S. CISA adds Gladinet CentreStack, and CWP Control Web Panel flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November...

U.S. CISA adds Dassault Systèmes DELMIA Apriso flaws to its Known Exploited Vulnerabilities catalog

AndyC 30 October 2025

U.S. CISA adds Dassault Systèmes DELMIA Apriso flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 29, 2025 U.S....

U.S. CISA adds Motex LANSCOPE flaw to its Known Exploited Vulnerabilities catalog

AndyC 24 October 2025

U.S. CISA adds Motex LANSCOPE flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 23, 2025 U.S. Cybersecurity and Infrastructure...

Chinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft’s July Patch

AndyC 23 October 2025

Oct 22, 2025Ravie LakshmananCyber Espionage / Vulnerability Threat actors with ties to China exploited the ToolShell security vulnerability in Microsoft...

U.S. CISA adds Oracle, Windows, Kentico, and Apple flaws to its Known Exploited Vulnerabilities catalog

AndyC 22 October 2025

U.S. CISA adds Oracle, Windows, Kentico, and Apple flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 21, 2025 U.S....

U.S. CISA adds Adobe Experience Manager Forms flaw to its Known Exploited Vulnerabilities catalog

AndyC 17 October 2025

U.S. CISA adds Adobe Experience Manager Forms flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 16, 2025 U.S. Cybersecurity...

Flax Typhoon APT exploited ArcGIS server for over a year as a backdoor

AndyC 16 October 2025

Flax Typhoon APT exploited ArcGIS server for over a year as a backdoor Pierluigi Paganini October 15, 2025 China-linked cyberespionage...

China’s Flax Typhoon Exploits ArcGIS App for Year-Long Persistence

AndyC 15 October 2025

A China-backed threat group exploited what ReliaQuest researchers called a “common security blind spot” to maintain persistence in a widely...

U.S. CISA adds Grafana flaw to its Known Exploited Vulnerabilities catalog

AndyC 11 October 2025

U.S. CISA adds Grafana flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 10, 2025 U.S. Cybersecurity and Infrastructure Security...

Major Discord hack exposes the real risks of digital ID

CVE-2025-61882 Explained: The Oracle Zero-Day Breach That Hit Enterprises Hard

AndyC 10 October 2025

A critical zero-day vulnerability in Oracle E-Business Suite (EBS) was exploited by the Cl0p ransomware group in mid-2025. The flaw,...

U.S. CISA adds Synacor Zimbra Collaboration Suite (ZCS) flaw to its Known Exploited Vulnerabilities catalog

AndyC 8 October 2025

U.S. CISA adds Synacor Zimbra Collaboration Suite (ZCS) flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 07, 2025...

Oracle patches critical E-Business Suite flaw exploited by Cl0p hackers

AndyC 7 October 2025

Oracle patches critical E-Business Suite flaw exploited by Cl0p hackers Pierluigi Paganini October 06, 2025 Oracle fixed a critical flaw...

exploited

U.S. CISA adds Samsung mobile devices flaw to its Known Exploited Vulnerabilities catalog

Critical Triofox bug exploited to run malicious payloads via AV configuration

LANDFALL spyware exploited Samsung zero-day CVE-2025-21042 in Middle East attacks

U.S. CISA adds Gladinet CentreStack, and CWP Control Web Panel flaws to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Dassault Systèmes DELMIA Apriso flaws to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Motex LANSCOPE flaw to its Known Exploited Vulnerabilities catalog

Chinese Threat Actors Exploit ToolShell SharePoint Flaw Weeks After Microsoft’s July Patch

U.S. CISA adds Oracle, Windows, Kentico, and Apple flaws to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Adobe Experience Manager Forms flaw to its Known Exploited Vulnerabilities catalog

Flax Typhoon APT exploited ArcGIS server for over a year as a backdoor

U.S. CISA adds Grafana flaw to its Known Exploited Vulnerabilities catalog

CVE-2025-61882 Explained: The Oracle Zero-Day Breach That Hit Enterprises Hard

U.S. CISA adds Synacor Zimbra Collaboration Suite (ZCS) flaw to its Known Exploited Vulnerabilities catalog

Oracle patches critical E-Business Suite flaw exploited by Cl0p hackers

This month in security with Tony Anscombe – December 2025 edition

A brush with online fraud: What are brushing scams and how do I stay safe?

Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

How AutoSecT Helps Security Teams Handle 1000+ Endpoints Effortlessly?

Post-Quantum Identity and Access Management for AI Agents

Trust Wallet confirms second Shai-Hulud supply-chain attack, $8.5M in crypto stolen

React2Shell under attack: RondoDox Botnet spreads miners and malware

ThreatsDay Bulletin: GhostAd Drain, macOS Attacks, Proxy Botnets, Cloud Exploits, and 12+ Stories

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed