exploited

Companies Warned of Commvault Vulnerability Exploitation

Companies Warned of Commvault Vulnerability Exploitation 2025-05-23 at 13:48 By Ionut Arghire CISA warns companies of a widespread campaign targeting a Commvault vulnerability to hack Azure environments. The post Companies Warned of Commvault Vulnerability Exploitation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Companies Warned of Commvault Vulnerability Exploitation Read More »

Cityworks Zero-Day Exploited by Chinese Hackers in US Local Government Attacks

Cityworks Zero-Day Exploited by Chinese Hackers in US Local Government Attacks 2025-05-23 at 12:31 By Ionut Arghire A Chinese threat actor exploited a zero-day vulnerability in Trimble Cityworks to hack local government entities in the US. The post Cityworks Zero-Day Exploited by Chinese Hackers in US Local Government Attacks appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

Cityworks Zero-Day Exploited by Chinese Hackers in US Local Government Attacks Read More »

Chinese Spies Exploit Ivanti Vulnerabilities Against Critical Sectors

Chinese Spies Exploit Ivanti Vulnerabilities Against Critical Sectors 2025-05-23 at 11:31 By Ionut Arghire A Chinese espionage group has been chaining two recent Ivanti EPMM vulnerabilities in attacks against organizations in multiple critical sectors. The post Chinese Spies Exploit Ivanti Vulnerabilities Against Critical Sectors appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Chinese Spies Exploit Ivanti Vulnerabilities Against Critical Sectors Read More »

Wiz Warns of Ongoing Exploitation of Recent Ivanti Vulnerabilities

Wiz Warns of Ongoing Exploitation of Recent Ivanti Vulnerabilities 2025-05-21 at 12:49 By Ionut Arghire Wiz warns that threat actors are chaining two recent Ivanti vulnerabilities to achieve unauthenticated remote code execution. The post Wiz Warns of Ongoing Exploitation of Recent Ivanti Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Wiz Warns of Ongoing Exploitation of Recent Ivanti Vulnerabilities Read More »

Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws

Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws 2025-05-15 at 13:48 By Ionut Arghire Two ransomware groups and several Chinese APTs have been exploiting two recent SAP NetWeaver vulnerabilities. The post Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Ransomware Groups, Chinese APTs Exploit Recent SAP NetWeaver Flaws Read More »

Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’

Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’ 2025-05-15 at 11:33 By Ionut Arghire Google has rolled out a Chrome 136 update that resolves a high-severity vulnerability for which a public exploit exists. The post Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’ appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Chrome 136 Update Patches Vulnerability With ‘Exploit in the Wild’ Read More »

Fortinet Patches Zero-Day Exploited Against FortiVoice Appliances

Fortinet Patches Zero-Day Exploited Against FortiVoice Appliances 2025-05-14 at 13:02 By Ionut Arghire Fortinet has patched a dozen vulnerabilities, including a critical flaw exploited in the wild against FortiVoice instances. The post Fortinet Patches Zero-Day Exploited Against FortiVoice Appliances appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Loading spinner

Fortinet Patches Zero-Day Exploited Against FortiVoice Appliances Read More »

Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers

Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers 2025-05-14 at 11:01 By Ionut Arghire Ivanti has released patches for two EPMM vulnerabilities that have been chained in the wild for remote code execution. The post Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers Read More »

Output Messenger Zero-Day Exploited by Turkish Hackers for Iraq Spying 

Output Messenger Zero-Day Exploited by Turkish Hackers for Iraq Spying  2025-05-13 at 14:04 By Ionut Arghire A Turkey-affiliated espionage group has exploited a zero-day vulnerability in Output Messenger since April 2024. The post Output Messenger Zero-Day Exploited by Turkish Hackers for Iraq Spying  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Output Messenger Zero-Day Exploited by Turkish Hackers for Iraq Spying  Read More »

SAP Zero-Day Targeted Since January, Many Sectors Impacted 

SAP Zero-Day Targeted Since January, Many Sectors Impacted  2025-05-09 at 14:01 By Ionut Arghire Hundreds of SAP NetWeaver instances hacked via a zero-day that allows remote code execution, not only arbitrary file uploads, as initially believed. The post SAP Zero-Day Targeted Since January, Many Sectors Impacted  appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

SAP Zero-Day Targeted Since January, Many Sectors Impacted  Read More »

Possible Zero-Day Patched in SonicWall SMA Appliances

Possible Zero-Day Patched in SonicWall SMA Appliances 2025-05-08 at 16:11 By Ionut Arghire SonicWall patches three SMA 100 vulnerabilities, including a potential zero-day, that could be chained to execute arbitrary code remotely. The post Possible Zero-Day Patched in SonicWall SMA Appliances appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Possible Zero-Day Patched in SonicWall SMA Appliances Read More »

Improperly Patched Samsung MagicINFO Vulnerability Exploited by Botnet

Improperly Patched Samsung MagicINFO Vulnerability Exploited by Botnet 2025-05-08 at 13:50 By Ionut Arghire The patches for an exploited Samsung MagicINFO vulnerability are ineffective and a Mirai botnet has started targeting it. The post Improperly Patched Samsung MagicINFO Vulnerability Exploited by Botnet appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Improperly Patched Samsung MagicINFO Vulnerability Exploited by Botnet Read More »

Second Ransomware Group Caught Exploiting Windows Flaw as Zero-Day

Second Ransomware Group Caught Exploiting Windows Flaw as Zero-Day 2025-05-07 at 13:02 By Eduard Kovacs At least two ransomware groups exploited the Windows zero-day CVE-2025-29824 before it was patched by Microsoft. The post Second Ransomware Group Caught Exploiting Windows Flaw as Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Second Ransomware Group Caught Exploiting Windows Flaw as Zero-Day Read More »

Second OttoKit Vulnerability Exploited to Hack WordPress Sites

Second OttoKit Vulnerability Exploited to Hack WordPress Sites 2025-05-07 at 12:16 By Ionut Arghire Threat actors are targeting a critical-severity vulnerability in the OttoKit WordPress plugin to gain administrative privileges. The post Second OttoKit Vulnerability Exploited to Hack WordPress Sites appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

Second OttoKit Vulnerability Exploited to Hack WordPress Sites Read More »

Second Wave of Attacks Hitting SAP NetWeaver After Zero-Day Compromise

Second Wave of Attacks Hitting SAP NetWeaver After Zero-Day Compromise 2025-05-06 at 15:39 By Ionut Arghire Threat actors are revisiting SAP NetWeaver instances to leverage webshells deployed via a recent zero-day vulnerability. The post Second Wave of Attacks Hitting SAP NetWeaver After Zero-Day Compromise appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

Second Wave of Attacks Hitting SAP NetWeaver After Zero-Day Compromise Read More »

Critical Vulnerability in AI Builder Langflow Under Attack

Critical Vulnerability in AI Builder Langflow Under Attack 2025-05-06 at 14:33 By Ionut Arghire CISA warns organizations that threat actors are exploiting a critical-severity vulnerability in low-code AI builder Langflow. The post Critical Vulnerability in AI Builder Langflow Under Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

Critical Vulnerability in AI Builder Langflow Under Attack Read More »

Samsung MagicINFO Vulnerability Exploited Days After PoC Publication

Samsung MagicINFO Vulnerability Exploited Days After PoC Publication 2025-05-06 at 14:33 By Ionut Arghire Threat actors started exploiting a vulnerability in Samsung MagicINFO only days after a PoC exploit was published. The post Samsung MagicINFO Vulnerability Exploited Days After PoC Publication appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Samsung MagicINFO Vulnerability Exploited Days After PoC Publication Read More »

Microsoft Warns of Attackers Exploiting Misconfigured Apache Pinot Installations

Microsoft Warns of Attackers Exploiting Misconfigured Apache Pinot Installations 2025-05-06 at 14:17 By Eduard Kovacs Misconfigured Apache Pinot instances can and have enabled threat actors to gain access to sensitive information.  The post Microsoft Warns of Attackers Exploiting Misconfigured Apache Pinot Installations appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Microsoft Warns of Attackers Exploiting Misconfigured Apache Pinot Installations Read More »

Android Update Patches FreeType Vulnerability Exploited as Zero-Day

Android Update Patches FreeType Vulnerability Exploited as Zero-Day 2025-05-06 at 12:00 By Ionut Arghire Android’s May 2025 security update includes patches for an exploited vulnerability in the FreeType open source rendering engine. The post Android Update Patches FreeType Vulnerability Exploited as Zero-Day appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Android Update Patches FreeType Vulnerability Exploited as Zero-Day Read More »

Critical Commvault Vulnerability in Attacker Crosshairs

Critical Commvault Vulnerability in Attacker Crosshairs 2025-05-05 at 15:32 By Ionut Arghire CISA has flagged a critical-severity Commvault vulnerability as exploited one week after technical details were released. The post Critical Commvault Vulnerability in Attacker Crosshairs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Critical Commvault Vulnerability in Attacker Crosshairs Read More »

Scroll to Top