May 2025 Patch Tuesday: 78 Flaws, 5 Exploited, & Critical SAP Fixes
May 14, 2025
Categories
Top Articles
Critical Vulnerabilities in Fortinet and Ivanti Products: Multiple Zero-Day Threats Addressed
May 14, 2025
CVE-2025-3462 & CVE-2025-3463: ASUS DriverHub Flaws Enable RCE
May 13, 2025
Reflections of the India–Pakistan Kashmir Escalation on the Cyber World
May 08, 2025
Severe Vulnerabilities in Cisco & SonicWall Expose Systems to RCE, DoS, and More: Patch Now
May 08, 2025
May 14, 2025
May 2025 Patch Tuesday: 78 Flaws, 5 Exploited, & Critical SAP Fixes
May 2025 Patch Tuesday: 78 Flaws, 5 Exploited, & Critical SAP Fixes Microsoft has released its May 2025 Patch Tuesday updates, addressing a total of 78 vulnerabilities across its software. Among t...
Learn More
May 14, 2025
Critical Vulnerabilities in Fortinet and Ivanti Products: Multiple Zer...
Critical Vulnerabilities in Fortinet and Ivanti Products: Multiple Zero-Day Threats Addressed Fortinet and Ivanti have each released critical security advisories addressing multiple high-impact vulner...
Learn More
May 13, 2025
CVE-2025-3462 & CVE-2025-3463: ASUS DriverHub Flaws Enable RCE
CVE-2025-3462 & CVE-2025-3463: ASUS DriverHub Flaws Enable RCE ASUS DriverHub, a utility built to simplify driver updates, was found to have two high-risk vulnerabilities: CVE-2025-3462 and CVE-20...
Learn More
May 08, 2025
Reflections of the India–Pakistan Kashmir Escalation on the Cyber Worl...
Reflections of the India–Pakistan Kashmir Escalation on the Cyber World Update: Ceasefire Holds, May 12, 2025 The Kashmir region, long a flashpoint between India and Pakistan, has once again become th...
Learn More
May 08, 2025
Severe Vulnerabilities in Cisco & SonicWall Expose Systems to RCE, DoS...
Severe Vulnerabilities in Cisco & SonicWall Expose Systems to RCE, DoS, and More: Patch Now Cisco and SonicWall have recently disclosed a series of critical and high-severity vulnerabilities affec...
Learn More
May 08, 2025
LockBit Hacked: 60,000 Bitcoin Addresses Leaked
LockBit Hacked: 60,000 Bitcoin Addresses Leaked The LockBit ransomware group, one of the most well-known cybercrime gangs, has been hacked. The attackers defaced LockBit’s Dark Web panel and leaked ne...
Learn More
May 07, 2025
Android's May 2025 Update Tackles CVE-2025-27363 & More – Langflow & M...
Android’s May 2025 Update Tackles CVE-2025-27363 & More – Langflow & MagicINFO Exploited, Kibana at Risk Google has rolled out its Android security bulletin for May 2025, addressing a to...
Learn More
May 06, 2025
The 5 Most Notorious Cyber Campaigns of 2024 Tracked by SOCRadar
The 5 Most Notorious Cyber Campaigns of 2024 Tracked by SOCRadar As cyber threats evolve in scale and sophistication, organizations must stay alert to emerging tactics that challenge traditional defen...
Learn More
May 05, 2025
GrassCall: The Malware Draining Crypto Wallets Through Fake Job Interv...
GrassCall: The Malware Draining Crypto Wallets Through Fake Job Interviews The Web3 and crypto scene, while full of promise and innovation, is increasingly attracting sophisticated security threats. O...
Learn More
Apr 30, 2025
Major Cyber Attacks in Review: March 2025
Major Cyber Attacks in Review: March 2025 March 2025 was marked by a wave of significant cyber incidents affecting cloud platforms, developer ecosystems, blockchain networks, and telecom providers. Fr...
Learn More
Apr 30, 2025
Google’s 2024 Zero-Day Report: Key Trends, Targets, and Exploits
Google’s 2024 Zero-Day Report: Key Trends, Targets, and Exploits In late April, Google’s Threat Intelligence Group (GTIG) published its annual report on zero-day exploitation, offering a detailed acco...
Learn More
Apr 26, 2025
Critical SAP NetWeaver Vulnerability (CVE-2025-31324) Allows Unauthori...
Critical SAP NetWeaver Vulnerability (CVE-2025-31324) Allows Unauthorized Upload of Malicious Executables In a critical security alert, SAP has released an emergency patch for CVE-2025-31324 — a sever...
Learn More
Apr 24, 2025
Blue Shield’s Google Analytics Error Exposes 4.7 Million Health Record...
Blue Shield’s Google Analytics Error Exposes 4.7 Million Health Records A recent data breach at Blue Shield of California has exposed sensitive health information of nearly 4.7 million individuals, hi...
Learn More
Apr 24, 2025
GitLab Issues Security Patch in April 2025
GitLab Issues Security Patch in April 2025 GitLab has issued a new patch release covering versions 17.11.1, 17.10.5, and 17.9.7 for both the Community Edition (CE) and Enterprise Edition (EE), introdu...
Learn More
Apr 21, 2025
Microsoft Entra Account Lockouts Explained (FAQ on the MACE Credential...
Microsoft Entra Account Lockouts Explained (FAQ on the MACE Credential Revocation Alerts) [Update] April 22, 2025: Microsoft Confirms Cause of Entra Account Lockouts Starting around April 19, system a...
Learn More
Apr 17, 2025
FortiGate Devices Compromised by Stealthy Backdoor Technique
FortiGate Devices Compromised by Stealthy Backdoor Technique A backdoor discovered in Fortinet FortiGate devices has drawn attention due to its ability to persist even after patches are applied. The m...
Learn More
Apr 17, 2025
TL;DR: MITRE CVE Program Funding Expiration – What CISOs Must Know
TL;DR: MITRE CVE Program Funding Expiration – What CISOs Must Know MITRE’s funding to manage the CVE program was reported to be expiring, triggering immediate alarm across the cybersecurity landscape....
Learn More
Apr 16, 2025
BidenCash Dark Web Market Leaks Nearly One Million Credit Cards
BidenCash Dark Web Market Leaks Nearly One Million Credit Cards Nearly one million leaked credit cards have been exposed by the dark web market BidenCash in a newly launched campaign. Shared through c...
Learn More
Apr 16, 2025
BreachForums is Offline: A New Twist or Just Another Cyber Shenanigan?
BreachForums is Offline: A New Twist or Just Another Cyber Shenanigan? [Update] April 28, 2025: “BreachForums Administration Finally Responds” [Update] April 25, 2025: “Is BreachForums Finished? Admin...
Learn More
Apr 10, 2025
Critical Fortinet Vulnerability (CVE-2024-48887) Puts FortiSwitch Admi...
Critical Fortinet Vulnerability (CVE-2024-48887) Puts FortiSwitch Admin Credentials at Risk A newly disclosed critical vulnerability in Fortinet’s FortiSwitch product line is raising urgent security c...
Learn More
