Attackers Exploit Critical GoAnywhere Bug to Spread Medusa Ransomware
A critical GoAnywhere flaw (CVE-2025-10035) is being targeted in attacks by a threat group known for deploying Medusa ransomware.
Archives for October 2025
All topics
Articles
21 Posts
Oracle Patches E-Business Suite Zero-Day Amid Clop Extortion Attacks
Oracle has patched a critical zero-day remote code execution flaw in its E-Business Suite, which was being exploited by the Clop gang in a rash of data theft and extortion attacks.
The Cl0p-Oracle Extortion Emails, Red Hat Breach, and Sad Government News
Dennis and Lindsey dissect a busy week in security news, starting with the Cl0p group’s extortion campaign against Oracle customers (3:24), then moving into the Crimson Collective’s claimed breach of some of Red Hat GitLab’s repos (12:41), and finally the consequences of the expiration of th CISA legislation and de-funding of the MS-ISAC (22:46). We also […]