exploited

GeoServer Flaw Exploited in US Federal Agency Hack

GeoServer Flaw Exploited in US Federal Agency Hack 2025-09-24 at 16:21 By Ionut Arghire The hackers remained undetected for three weeks, deploying China Chopper, remote access scripts, and reconnaissance tools. The post GeoServer Flaw Exploited in US Federal Agency Hack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React […]

React to this headline:

Loading spinner

GeoServer Flaw Exploited in US Federal Agency Hack Read More »

Libraesva Email Security Gateway Vulnerability Exploited by Nation-State Hackers

Libraesva Email Security Gateway Vulnerability Exploited by Nation-State Hackers 2025-09-24 at 12:10 By Ionut Arghire Tracked as CVE-2025-59689, the command injection bug could be triggered via malicious emails containing crafted compressed attachments. The post Libraesva Email Security Gateway Vulnerability Exploited by Nation-State Hackers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Libraesva Email Security Gateway Vulnerability Exploited by Nation-State Hackers Read More »

SolarWinds Makes Third Attempt at Patching Exploited Vulnerability

SolarWinds Makes Third Attempt at Patching Exploited Vulnerability 2025-09-23 at 19:51 By Ionut Arghire CVE-2025-26399 is a patch bypass of CVE-2024-28988, which is a patch bypass of the exploited CVE-2024-28986. The post SolarWinds Makes Third Attempt at Patching Exploited Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

SolarWinds Makes Third Attempt at Patching Exploited Vulnerability Read More »

CISA Analyzes Malware From Ivanti EPMM Intrusions

CISA Analyzes Malware From Ivanti EPMM Intrusions 2025-09-19 at 14:30 By Ionut Arghire Hackers chained two Ivanti EPMM vulnerabilities to collect system information, dump credentials, and execute malware. The post CISA Analyzes Malware From Ivanti EPMM Intrusions appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

CISA Analyzes Malware From Ivanti EPMM Intrusions Read More »

Chrome 140 Update Patches Sixth Zero-Day of 2025

Chrome 140 Update Patches Sixth Zero-Day of 2025 2025-09-18 at 11:10 By Ionut Arghire An exploited type confusion in the V8 JavaScript engine tracked as CVE-2025-10585 was found by Google Threat Analysis Group this week. The post Chrome 140 Update Patches Sixth Zero-Day of 2025 appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Chrome 140 Update Patches Sixth Zero-Day of 2025 Read More »

Samsung Patches Zero-Day Exploited Against Android Users

Samsung Patches Zero-Day Exploited Against Android Users 2025-09-15 at 11:21 By Ionut Arghire Reported by Meta and WhatsApp, the vulnerability leads to remote code execution and was likely exploited by a spyware vendor. The post Samsung Patches Zero-Day Exploited Against Android Users appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

Samsung Patches Zero-Day Exploited Against Android Users Read More »

DELMIA Factory Software Vulnerability Exploited in Attacks

DELMIA Factory Software Vulnerability Exploited in Attacks 2025-09-12 at 16:11 By Ionut Arghire A deserialization of untrusted data in the MOM software allows attackers to achieve remote code execution. The post DELMIA Factory Software Vulnerability Exploited in Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

Loading spinner

DELMIA Factory Software Vulnerability Exploited in Attacks Read More »

Akira Ransomware Attacks Fuel Uptick in Exploitation of SonicWall Flaw

Akira Ransomware Attacks Fuel Uptick in Exploitation of SonicWall Flaw 2025-09-11 at 15:54 By Ionut Arghire The Akira ransomware group is likely exploiting a combination of three attack vectors to gain unauthorized access to vulnerable appliances. The post Akira Ransomware Attacks Fuel Uptick in Exploitation of SonicWall Flaw appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Akira Ransomware Attacks Fuel Uptick in Exploitation of SonicWall Flaw Read More »

Recent SAP S/4HANA Vulnerability Exploited in Attacks

Recent SAP S/4HANA Vulnerability Exploited in Attacks 2025-09-05 at 11:09 By Eduard Kovacs A critical SAP S/4HANA code injection flaw tracked as CVE-2025-42957 and allowing full system takeover has been exploited in the wild. The post Recent SAP S/4HANA Vulnerability Exploited in Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Recent SAP S/4HANA Vulnerability Exploited in Attacks Read More »

Hackers Exploit Sitecore Zero-Day for Malware Delivery

Hackers Exploit Sitecore Zero-Day for Malware Delivery 2025-09-04 at 12:02 By Ionut Arghire Google has observed ViewState deserialization attacks leveraging a sample machine key exposed in older deployment guides. The post Hackers Exploit Sitecore Zero-Day for Malware Delivery appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

Loading spinner

Hackers Exploit Sitecore Zero-Day for Malware Delivery Read More »

Two Exploited Vulnerabilities Patched in Android

Two Exploited Vulnerabilities Patched in Android 2025-09-04 at 11:40 By Ionut Arghire Elevation of privilege flaws in Android Runtime (CVE-2025-48543) and Linux kernel (CVE-2025-38352) have been exploited in targeted attacks. The post Two Exploited Vulnerabilities Patched in Android appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

Loading spinner

Two Exploited Vulnerabilities Patched in Android Read More »

Organizations Warned of Exploited Git Vulnerability

Organizations Warned of Exploited Git Vulnerability 2025-08-26 at 11:29 By Ionut Arghire CISA urges federal agencies to immediately patch an exploited arbitrary file write vulnerability in Git that leads to remote code execution. The post Organizations Warned of Exploited Git Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

Organizations Warned of Exploited Git Vulnerability Read More »

Russian APT Exploiting 7-Year-Old Cisco Vulnerability: FBI

Russian APT Exploiting 7-Year-Old Cisco Vulnerability: FBI 2025-08-21 at 14:16 By Ionut Arghire Russian state-sponsored hackers tracked as Static Tundra continue to target Cisco devices affected by CVE-2018-0171. The post Russian APT Exploiting 7-Year-Old Cisco Vulnerability: FBI appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Russian APT Exploiting 7-Year-Old Cisco Vulnerability: FBI Read More »

New Exploit Poses Threat to SAP NetWeaver Instances

New Exploit Poses Threat to SAP NetWeaver Instances 2025-08-19 at 15:59 By Ionut Arghire A new public exploit chains two critical flaws in SAP NetWeaver, exposing unpatched instances to code execution attacks. The post New Exploit Poses Threat to SAP NetWeaver Instances appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Loading spinner

New Exploit Poses Threat to SAP NetWeaver Instances Read More »

Hundreds of N-able N-central Instances Affected by Exploited Vulnerabilities

Hundreds of N-able N-central Instances Affected by Exploited Vulnerabilities 2025-08-18 at 15:25 By Ionut Arghire More than 870 N-able N-central instances have not been patched against CVE-2025-8875 and CVE-2025-8876, two exploited vulnerabilities. The post Hundreds of N-able N-central Instances Affected by Exploited Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

Loading spinner

Hundreds of N-able N-central Instances Affected by Exploited Vulnerabilities Read More »

CISA Warns of Attacks Exploiting N-able Vulnerabilities

CISA Warns of Attacks Exploiting N-able Vulnerabilities 2025-08-14 at 15:32 By Eduard Kovacs CISA reported becoming aware of attacks exploiting CVE-2025-8875 and CVE-2025-8876 in N-able N-central on the day they were patched. The post CISA Warns of Attacks Exploiting N-able Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

Loading spinner

CISA Warns of Attacks Exploiting N-able Vulnerabilities Read More »

OT Networks Targeted in Widespread Exploitation of Erlang/OTP Vulnerability

OT Networks Targeted in Widespread Exploitation of Erlang/OTP Vulnerability 2025-08-12 at 12:08 By Eduard Kovacs The recently patched Erlang/OTP flaw CVE-2025-32433 has been exploited since early May, shortly after its existence came to light. The post OT Networks Targeted in Widespread Exploitation of Erlang/OTP Vulnerability appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

OT Networks Targeted in Widespread Exploitation of Erlang/OTP Vulnerability Read More »

Russian Hackers Exploited WinRAR Zero-Day in Attacks on Europe, Canada

Russian Hackers Exploited WinRAR Zero-Day in Attacks on Europe, Canada 2025-08-11 at 12:55 By Eduard Kovacs WinRAR has patched CVE-2025-8088, a zero-day exploited by Russia’s RomCom in attacks on financial, defense, manufacturing and logistics companies. The post Russian Hackers Exploited WinRAR Zero-Day in Attacks on Europe, Canada appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Russian Hackers Exploited WinRAR Zero-Day in Attacks on Europe, Canada Read More »

SonicWall Says Recent Attacks Don’t Involve Zero-Day Vulnerability

SonicWall Says Recent Attacks Don’t Involve Zero-Day Vulnerability 2025-08-07 at 20:23 By Eduard Kovacs SonicWall has been investigating reports about a zero-day potentially being exploited in ransomware attacks, but found no evidence of a new vulnerability.  The post SonicWall Says Recent Attacks Don’t Involve Zero-Day Vulnerability appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

SonicWall Says Recent Attacks Don’t Involve Zero-Day Vulnerability Read More »

Trend Micro Patches Apex One Vulnerabilities Exploited in Wild

Trend Micro Patches Apex One Vulnerabilities Exploited in Wild 2025-08-06 at 18:08 By Eduard Kovacs Trend Micro has rushed to fix two Apex One zero-days that may have been exploited by Chinese threat actors. The post Trend Micro Patches Apex One Vulnerabilities Exploited in Wild appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Trend Micro Patches Apex One Vulnerabilities Exploited in Wild Read More »

Scroll to Top