LakshmananVulnerability

CL0P-Linked Hackers Breach Dozens of Organizations Through Oracle Software Flaw

AndyC 11 October 2025

Oct 10, 2025Ravie LakshmananVulnerability / Threat Intelligence Dozens of organizations may have been impacted following the zero-day exploitation of a...

Critical Exploit Lets Hackers Bypass Authentication in WordPress Service Finder Theme

AndyC 10 October 2025

Oct 09, 2025Ravie LakshmananVulnerability / Website Security Threat actors are actively exploiting a critical security flaw impacting the Service Finder...

Severe Figma MCP Vulnerability Lets Hackers Execute Code Remotely — Patch Now

AndyC 9 October 2025

Oct 08, 2025Ravie LakshmananVulnerability / Software Security Cybersecurity researchers have disclosed details of a now-patched vulnerability in the popular figma-developer-mcp...

13-Year-Old Redis Flaw Exposed: CVSS 10.0 Vulnerability Lets Attackers Run Code Remotely

AndyC 8 October 2025

Oct 07, 2025Ravie LakshmananVulnerability / Cloud Security Redis has disclosed details of a maximum-severity security flaw in its in-memory database...

Microsoft Links Storm-1175 to GoAnywhere Exploit Deploying Medusa Ransomware

AndyC 8 October 2025

Oct 07, 2025Ravie LakshmananVulnerability / Cloud Security Microsoft on Monday attributed a threat actor it tracks as Storm-1175 to the...

Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks

AndyC 6 October 2025

Oct 06, 2025Ravie LakshmananVulnerability / Threat Intelligence Oracle has released an emergency update to address a critical security flaw in...

Scanning Activity on Palo Alto Networks Portals Jump 500% in One Day

AndyC 5 October 2025

Oct 04, 2025Ravie LakshmananVulnerability / Network Security Threat intelligence firm GreyNoise disclosed on Friday that it has observed a spike...

CISA Flags Meteobridge CVE-2025-4008 Flaw as Actively Exploited in the Wild

AndyC 4 October 2025

Oct 03, 2025Ravie LakshmananVulnerability / IoT Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity...

OneLogin Bug Let Attackers Use API Keys to Steal OIDC Secrets and Impersonate Apps

AndyC 2 October 2025

Oct 01, 2025Ravie LakshmananVulnerability / API Security A high-severity security flaw has been disclosed in the One Identity OneLogin Identity...

Hackers Exploit Milesight Routers to Send Phishing SMS to European Users

AndyC 2 October 2025

Oct 01, 2025Ravie LakshmananVulnerability / Malware Unknown threat actors are abusing Milesight industrial cellular routers to send SMS messages as...

CISA Sounds Alarm on Critical Sudo Flaw Actively Exploited in Linux and Unix Systems

AndyC 30 September 2025

Sep 30, 2025Ravie LakshmananVulnerability / Linux The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a critical security...

Fortra GoAnywhere CVSS 10 Flaw Exploited as 0-Day a Week Before Public Disclosure

AndyC 27 September 2025

Sep 26, 2025Ravie LakshmananVulnerability / Threat Intelligence Cybersecurity company watchTowr Labs has disclosed that it has "credible evidence" of active...

Cisco Warns of Actively Exploited SNMP Vulnerability Allowing RCE or DoS in IOS Software

AndyC 25 September 2025

Sep 25, 2025Ravie LakshmananVulnerability / Network Security Cisco has warned of a high-severity security flaw in IOS Software and IOS...

Chinese Hackers RedNovember Target Global Governments Using Pantegana and Cobalt Strike

AndyC 25 September 2025

Sep 24, 2025Ravie LakshmananVulnerability / Network Security A suspected cyber espionage activity cluster that was previously found targeting global government...

State-Sponsored Hackers Exploiting Libraesva Email Security Gateway Vulnerability

AndyC 24 September 2025

Sep 24, 2025Ravie LakshmananVulnerability / Email Security Libraesva has released a security update to address a vulnerability in its Email...

LakshmananVulnerability

CL0P-Linked Hackers Breach Dozens of Organizations Through Oracle Software Flaw

Critical Exploit Lets Hackers Bypass Authentication in WordPress Service Finder Theme

Severe Figma MCP Vulnerability Lets Hackers Execute Code Remotely — Patch Now

Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks

Scanning Activity on Palo Alto Networks Portals Jump 500% in One Day

CISA Flags Meteobridge CVE-2025-4008 Flaw as Actively Exploited in the Wild

OneLogin Bug Let Attackers Use API Keys to Steal OIDC Secrets and Impersonate Apps

Hackers Exploit Milesight Routers to Send Phishing SMS to European Users

CISA Sounds Alarm on Critical Sudo Flaw Actively Exploited in Linux and Unix Systems

Fortra GoAnywhere CVSS 10 Flaw Exploited as 0-Day a Week Before Public Disclosure

Cisco Warns of Actively Exploited SNMP Vulnerability Allowing RCE or DoS in IOS Software

Chinese Hackers RedNovember Target Global Governments Using Pantegana and Cobalt Strike

State-Sponsored Hackers Exploiting Libraesva Email Security Gateway Vulnerability

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

Microsoft 365 accounts targeted in wave of OAuth phishing attacks

State-linked and criminal hackers use device code phishing against M365 users

Three ways teams can tackle Iran’s tangled web of state-sponsored espionage

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed