Category: Uncategorized

New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login Summary SAP has issued fixes for 13 security issues in its October 2025 patch cycle, including a maximum-severity insecure…

Chinese Hackers Exploit ArcGIS Server as Backdoor for Over a Year Summary ReliaQuest attributes a long-running compromise of a public-facing ArcGIS server to the China-linked activity group Flax Typhoon (aka…

RMPocalypse: Single 8-Byte Write Shatters AMD’s SEV-SNP Confidential Computing Summary Researchers at ETH Zürich disclosed a flaw called RMPocalypse that allows a single 8-byte write to the Reverse Map Paging…

Hackers Deploy Linux Rootkits via Cisco SNMP Flaw in ‘Zero Disco’ Attacks Summary Researchers from Trend Micro have detailed “Operation Zero Disco”, a campaign that exploited CVE-2025-20352 (CVSS 7.7) —…

CISA Flags Adobe AEM Flaw with Perfect 10.0 Score — Already Under Active Attack Summary The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2025-54253 — a maximum-severity (CVSS…

F5 Breach Exposes BIG-IP Source Code — Nation-State Hackers Behind Massive Intrusion Summary F5 disclosed that an unidentified, “highly sophisticated nation-state” threat actor breached its systems and exfiltrated files containing…

Over 100 VS Code Extensions Exposed Developers to Hidden Supply Chain Risks Summary Research by Wiz revealed that publishers of over 100 Visual Studio Code extensions inadvertently leaked personal access…

Two New Windows Zero-Days Exploited in the Wild — One Affects Every Version Ever Shipped Summary Microsoft released security updates covering 183 vulnerabilities across its products. Three flaws are confirmed…

Researchers Uncover WatchGuard VPN Bug That Could Let Attackers Take Over Devices Summary Security researchers have disclosed a critical out-of-bounds write vulnerability in WatchGuard Fireware OS (CVE-2025-9242, CVSS 9.3) that…