FortiGate Devices Compromised by Stealthy Backdoor Technique
Apr 17, 2025
Categories
Top Articles
TL;DR: MITRE CVE Program Funding Expiration – What CISOs Must Know
Apr 17, 2025
BidenCash Dark Web Market Leaks Nearly One Million Credit Cards
Apr 16, 2025
BreachForums is Offline: A New Twist or Just Another Cyber Shenanigan?
Apr 16, 2025
Critical Fortinet Vulnerability (CVE-2024-48887) Puts FortiSwitch Admin Credentials at Risk
Apr 10, 2025
Apr 17, 2025
FortiGate Devices Compromised by Stealthy Backdoor Technique
FortiGate Devices Compromised by Stealthy Backdoor Technique A backdoor discovered in Fortinet FortiGate devices has drawn attention due to its ability to persist even after patches are applied. The m...
Learn More
Apr 17, 2025
TL;DR: MITRE CVE Program Funding Expiration – What CISOs Must Know
TL;DR: MITRE CVE Program Funding Expiration – What CISOs Must Know MITRE’s funding to manage the CVE program was reported to be expiring, triggering immediate alarm across the cybersecurity landscape....
Learn More
Apr 16, 2025
BidenCash Dark Web Market Leaks Nearly One Million Credit Cards
BidenCash Dark Web Market Leaks Nearly One Million Credit Cards Nearly one million leaked credit cards have been exposed by the dark web market BidenCash in a newly launched campaign. Shared through c...
Learn More
Apr 16, 2025
BreachForums is Offline: A New Twist or Just Another Cyber Shenanigan?
BreachForums is Offline: A New Twist or Just Another Cyber Shenanigan? [Update] April 18, 2025: “FBI Seizure Claims and Admin Disappearances” BreachForums, a hacker forum, has been taken offline again...
Learn More
Apr 10, 2025
Critical Fortinet Vulnerability (CVE-2024-48887) Puts FortiSwitch Admi...
Critical Fortinet Vulnerability (CVE-2024-48887) Puts FortiSwitch Admin Credentials at Risk A newly disclosed critical vulnerability in Fortinet’s FortiSwitch product line is raising urgent security c...
Learn More
Apr 09, 2025
April 2025 Patch Tuesday: Microsoft Addresses 126 Vulnerabilities Incl...
April 2025 Patch Tuesday: Microsoft Addresses 126 Vulnerabilities Including Actively Exploited CLFS Zero-Day Microsoft’s April 2025 Patch Tuesday brings an extensive set of updates aimed at shoring up...
Learn More
Apr 08, 2025
April 2025 Android Update: Actively Exploited Kernel Bugs and Remote P...
April 2025 Android Update: Actively Exploited Kernel Bugs and Remote Privilege Escalation Threat Google has just released its April 2025 Android security bulletin, addressing a broad spectrum of vulne...
Learn More
Apr 07, 2025
Storm-2372: Russian APT Using Device Code Phishing in Advanced Attacks
Storm-2372: Russian APT Using Device Code Phishing in Advanced Attacks A newly uncovered cyber campaign led by the Russian state-backed group Storm-2372 is exploiting device code phishing to bypass Mu...
Learn More
Apr 04, 2025
UNC5221 Targets Critical Ivanti Flaw (CVE-2025-22457) with TRAILBLAZE ...
UNC5221 Targets Critical Ivanti Flaw (CVE-2025-22457) with TRAILBLAZE & BRUSHFIRE Malware A recently disclosed critical vulnerability in Ivanti products, CVE-2025-22457, has drawn urgent attention...
Learn More
Apr 04, 2025
Everything You Need to Know About the Alleged Twilio SendGrid Breach
Everything You Need to Know About the Alleged Twilio SendGrid Breach [Update] April 9, 2025: “Alleged Breach Expands Beyond SendGrid” On April 3, 2025, a threat actor operating under the alias Satanic...
Learn More
Apr 02, 2025
CrushFTP Vulnerability Under Active Exploitation (CVE-2025-31161): Wha...
CrushFTP Vulnerability Under Active Exploitation (CVE-2025-31161): What You Need to Know [Update] April 8, 2025: CISA Flags Actively Exploited CrushFTP Vulnerability (CVE-2025-31161) A newly discovere...
Learn More
Apr 01, 2025
Alleged Check Point Breach: What Happened and What You Need to Know?
Alleged Check Point Breach: What Happened and What You Need to Know? [Update] April 2, 2025: “Latest Developments: Dissecting CoreInjection’s Claims and the Alleged Leak” On March 31, 2025, a threat a...
Learn More
Mar 28, 2025
Mozilla Responds to Critical Vulnerability: Urgent Firefox Update
Mozilla Responds to Critical Vulnerability: Urgent Firefox Update In a rapid response to a similar vulnerability with Google Chrome, Mozilla has issued an update for its Firefox browser on Windows to ...
Learn More
Mar 25, 2025
Ingress Nightmare: Critical Unauthenticated Remote Code Execution Vuln...
Ingress Nightmare: Critical Unauthenticated Remote Code Execution Vulnerabilities in Ingress NGINX On March 24, 2025, the Kubernetes Security Response Committee released a patch for a set of high to c...
Learn More
Mar 25, 2025
Everything You Need to Know About Oracle Cloud Security Incident by ro...
Everything You Need to Know About Oracle Cloud Security Incident by rose87168 [Update] April 2, 2025: “What are the Recent Developments?” [Update] April 9, 2025: “Oracle has reportedly begun notifying...
Learn More
Mar 25, 2025
Arkana Ransomware Attack on WideOpenWest: What You Need to Know
Arkana Ransomware Attack on WideOpenWest: What You Need to Know A previously unknown threat actor has launched its first ransomware attack, marking a worrisome new chapter in the cyber threat landscap...
Learn More
Mar 24, 2025
Next.js Middleware Vulnerability (CVE-2025-29927): What You Need to Kn...
Next.js Middleware Vulnerability (CVE-2025-29927): What You Need to Know and How to Respond A critical security flaw has recently shaken the Next.js ecosystem, bringing urgent attention to the framewo...
Learn More
Mar 21, 2025
Critical Veeam Vulnerability (CVE-2025-23120) Enables Remote Code Exec...
Critical Veeam Vulnerability (CVE-2025-23120) Enables Remote Code Execution by Domain Users A newly discovered vulnerability in Veeam Backup & Replication, tracked as CVE-2025-23120, has emerged a...
Learn More
Mar 19, 2025
Windows Shortcut Zero-Day (ZDI-CAN-25373) Exploited by State-Backed Th...
Windows Shortcut Zero-Day (ZDI-CAN-25373) Exploited by State-Backed Threat Actors Since 2017: Overview of Key Details A sophisticated zero-day vulnerability, ZDI-CAN-25373, has been secretly exploited...
Learn More
Mar 18, 2025
Apache Tomcat RCE Vulnerability (CVE-2025-24813) Under Active Exploita...
Apache Tomcat RCE Vulnerability (CVE-2025-24813) Under Active Exploitation: Patch Now A serious vulnerability in Apache Tomcat, CVE-2025-24813, is being actively exploited in the wild. This flaw allow...
Learn More
