Attackers Exploit Critical GoAnywhere Bug to Spread Medusa Ransomware
A critical GoAnywhere flaw (CVE-2025-10035) is being targeted in attacks by a threat group known for deploying Medusa ransomware.
All topics
Articles
77 Posts
Oracle Patches E-Business Suite Zero-Day Amid Clop Extortion Attacks
Oracle has patched a critical zero-day remote code execution flaw in its E-Business Suite, which was being exploited by the Clop gang in a rash of data theft and extortion attacks.
VMware Patches Bug Exploited By State Actors
The vulnerability (CVE-2025-41244) is easily exploitable, although it requires existing privileges on the target product.
Microsoft Releases New Agentic AI Tools
The foundation of the new offerings is MIcrosoft Sentinel, the company’s security platform, that now includes the availability of the massive Sentinel data lake.
Akira Ransomware Actors Target SonicWall SSLVPN
This aggressive approach aligns with Akira's historical tactics of exploiting VPN infrastructure as an initial access vector.
Cisco Warns of Attacks on Two ASA Flaws
Cisco’s Talos threat intelligence team said this campaign is the work of an actor it tracks as UAT4356, an APT team that has previously targeted ASA devices.