Vulnerabilities Patched by Juniper, VMware and Zoom 2025-05-14 at 13:46 By Ionut Arghire Juniper Networks, VMware, and Zoom have announced patches for dozens of vulnerabilities across their products. The post Vulnerabilities Patched by Juniper, VMware and Zoom appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Vulnerabilities Patched by Juniper, VMware and Zoom Read More »
Fortinet Patches Zero-Day Exploited Against FortiVoice Appliances 2025-05-14 at 13:02 By Ionut Arghire Fortinet has patched a dozen vulnerabilities, including a critical flaw exploited in the wild against FortiVoice instances. The post Fortinet Patches Zero-Day Exploited Against FortiVoice Appliances appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Fortinet Patches Zero-Day Exploited Against FortiVoice Appliances Read More »
Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers 2025-05-14 at 11:01 By Ionut Arghire Ivanti has released patches for two EPMM vulnerabilities that have been chained in the wild for remote code execution. The post Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers appeared first on SecurityWeek. This article is an excerpt from
Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers Read More »
Adobe Patches Big Batch of Critical-Severity Software Flaws 2025-05-13 at 22:47 By Ryan Naraine Adobe Patch Tuesday headlined by a major Adobe ColdFusion update patching a wide swatch of code execution and privilege escalation attacks. The post Adobe Patches Big Batch of Critical-Severity Software Flaws appeared first on SecurityWeek. This article is an excerpt from
Adobe Patches Big Batch of Critical-Severity Software Flaws Read More »
Zero-Day Attacks Highlight Another Busy Microsoft Patch Tuesday 2025-05-13 at 21:16 By Ryan Naraine Patch Tuesday: Microsoft patches at least 70 security bugs and flagged five zero-days in the “exploitation detected” category. The post Zero-Day Attacks Highlight Another Busy Microsoft Patch Tuesday appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
Zero-Day Attacks Highlight Another Busy Microsoft Patch Tuesday Read More »
SAP Patches Another Critical NetWeaver Vulnerability 2025-05-13 at 16:01 By Ionut Arghire SAP has released 16 new security notes on its May 2025 Security Patch Day, including a note dealing with another critical NetWeaver vulnerability. The post SAP Patches Another Critical NetWeaver Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View
SAP Patches Another Critical NetWeaver Vulnerability Read More »
Radware Says Recently Disclosed WAF Bypasses Were Patched in 2023 2025-05-13 at 15:35 By Eduard Kovacs The Radware Cloud WAF product vulnerabilities disclosed by CERT/CC were addressed two years ago. The post Radware Says Recently Disclosed WAF Bypasses Were Patched in 2023 appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
Radware Says Recently Disclosed WAF Bypasses Were Patched in 2023 Read More »
Apple Patches Major Security Flaws in iOS, macOS Platforms 2025-05-12 at 22:16 By Ryan Naraine Apple rolls out iOS and macOS platform updates to fix serious security bugs that could be triggered simply by opening an image or video file. The post Apple Patches Major Security Flaws in iOS, macOS Platforms appeared first on SecurityWeek.
Apple Patches Major Security Flaws in iOS, macOS Platforms Read More »
Asus DriverHub Vulnerabilities Expose Users to Remote Code Execution Attacks 2025-05-12 at 14:30 By Ionut Arghire Two vulnerabilities in ASUS’s pre-installed software DriverHub can be exploited for remote code execution. The post Asus DriverHub Vulnerabilities Expose Users to Remote Code Execution Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
Asus DriverHub Vulnerabilities Expose Users to Remote Code Execution Attacks Read More »
In Other News: India-Pakistan Cyberattacks, Radware Vulnerabilities, xAI Leak 2025-05-09 at 17:54 By Eduard Kovacs Noteworthy stories that might have slipped under the radar: surge in cyberattacks between India and Pakistan, Radware cloud WAF vulnerabilities, xAI key leak. The post In Other News: India-Pakistan Cyberattacks, Radware Vulnerabilities, xAI Leak appeared first on SecurityWeek. This article
In Other News: India-Pakistan Cyberattacks, Radware Vulnerabilities, xAI Leak Read More »
SAP Zero-Day Targeted Since January, Many Sectors Impacted 2025-05-09 at 14:01 By Ionut Arghire Hundreds of SAP NetWeaver instances hacked via a zero-day that allows remote code execution, not only arbitrary file uploads, as initially believed. The post SAP Zero-Day Targeted Since January, Many Sectors Impacted appeared first on SecurityWeek. This article is an excerpt
SAP Zero-Day Targeted Since January, Many Sectors Impacted Read More »
Possible Zero-Day Patched in SonicWall SMA Appliances 2025-05-08 at 16:11 By Ionut Arghire SonicWall patches three SMA 100 vulnerabilities, including a potential zero-day, that could be chained to execute arbitrary code remotely. The post Possible Zero-Day Patched in SonicWall SMA Appliances appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Possible Zero-Day Patched in SonicWall SMA Appliances Read More »
Improperly Patched Samsung MagicINFO Vulnerability Exploited by Botnet 2025-05-08 at 13:50 By Ionut Arghire The patches for an exploited Samsung MagicINFO vulnerability are ineffective and a Mirai botnet has started targeting it. The post Improperly Patched Samsung MagicINFO Vulnerability Exploited by Botnet appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
Improperly Patched Samsung MagicINFO Vulnerability Exploited by Botnet Read More »
Cisco Patches 35 Vulnerabilities Across Several Products 2025-05-08 at 13:01 By Ionut Arghire Cisco releases patches for 26 vulnerabilities in IOS and IOS XE software, including 17 critical- and high-severity bugs. The post Cisco Patches 35 Vulnerabilities Across Several Products appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Cisco Patches 35 Vulnerabilities Across Several Products Read More »
Dozens of SysAid Instances Vulnerable to Remote Hacking 2025-05-08 at 12:46 By Eduard Kovacs SysAid patches IT service management software vulnerabilities that can be chained for unauthenticated remote command execution. The post Dozens of SysAid Instances Vulnerable to Remote Hacking appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Dozens of SysAid Instances Vulnerable to Remote Hacking Read More »
Second OttoKit Vulnerability Exploited to Hack WordPress Sites 2025-05-07 at 12:16 By Ionut Arghire Threat actors are targeting a critical-severity vulnerability in the OttoKit WordPress plugin to gain administrative privileges. The post Second OttoKit Vulnerability Exploited to Hack WordPress Sites appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Second OttoKit Vulnerability Exploited to Hack WordPress Sites Read More »
Lights Out and Stalled Factories: Using M.A.T.R.I.X to Learn About Modbus Vulnerabilities 2025-05-06 at 18:47 By Karl Biron Let’s explore the critical role of Modbus in energy and manufacturing systems, then demonstrate real-world exploitation techniques using Docker-based simulations and the custom-built Python tool M.A.T.R.I.X. This article is an excerpt from SpiderLabs Blog View Original Source
Second Wave of Attacks Hitting SAP NetWeaver After Zero-Day Compromise 2025-05-06 at 15:39 By Ionut Arghire Threat actors are revisiting SAP NetWeaver instances to leverage webshells deployed via a recent zero-day vulnerability. The post Second Wave of Attacks Hitting SAP NetWeaver After Zero-Day Compromise appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
Second Wave of Attacks Hitting SAP NetWeaver After Zero-Day Compromise Read More »
Samsung MagicINFO Vulnerability Exploited Days After PoC Publication 2025-05-06 at 14:33 By Ionut Arghire Threat actors started exploiting a vulnerability in Samsung MagicINFO only days after a PoC exploit was published. The post Samsung MagicINFO Vulnerability Exploited Days After PoC Publication appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Samsung MagicINFO Vulnerability Exploited Days After PoC Publication Read More »
Critical Commvault Vulnerability in Attacker Crosshairs 2025-05-05 at 15:32 By Ionut Arghire CISA has flagged a critical-severity Commvault vulnerability as exploited one week after technical details were released. The post Critical Commvault Vulnerability in Attacker Crosshairs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Critical Commvault Vulnerability in Attacker Crosshairs Read More »