January 24, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a known vulnerability in SonicWall's SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC) to its Known Exploited Vulnerabilities catalog.

January 24, 2025

SonicWall has alerted its customers about a critical security vulnerability, identified as CVE-2025-23006, which affects its Secure Mobile Access (SMA) 1000 Series appliances.

January 23, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have issued a warning about threat actors exploiting a series of vulnerabilities in Ivanti's Cloud Service Appliance (CSA).

January 21, 2025

Two distinct campaigns are currently exploiting vulnerabilities in a variety of IoT devices across the globe, with the objective of compromising these devices and disseminating malware on a global scale.

January 21, 2025

A botnet made up of approximately 13,000 commandeered MikroTik routers has been used to distribute malware through spam campaigns.

January 20, 2025

New findings highlight security flaws in several tunneling protocols, which could potentially expose 4.2 million hosts to cyberattacks.

January 17, 2025

A significant amount of dated configuration data and VPN credentials for 15,474 Fortinet devices have been freely posted on the dark web.

January 16, 2025

A severe security vulnerability in the Unified Extensible Firmware Interface (UEFI) systems, which could have allowed attackers to bypass the Secure Boot mechanism, has been patched.

January 16, 2025

Cyber criminals have been identified using a novel approach to deliver malware, hiding malicious code within images.

January 16, 2025

GuidePoint Security's cybersecurity researchers have unearthed a cyberattack that involves a threat actor using a Python-based backdoor to maintain persistent entry to compromised systems, which is then used to deploy the RansomHub ransomware throughout the victim's network.