Latest Intelligence
Ivanti Patches Two EPMM Zero-Days Exploited to Hack Customers
Ivanti has issued patches for two critical vulnerabilities in its EPMM software that have been actively exploited for remote code execution. The significance of these vulnerabilities lies in their potential to compromise customer systems, highlighting the importance of timely updates to security software.
ICS Patch Tuesday: Vulnerabilities Addressed by Siemens, Schneider, Phoenix Contact
Siemens, Schneider Electric, and Phoenix Contact have released security advisories addressing vulnerabilities in their industrial control systems during the May 2025 Patch Tuesday. The significance of these advisories lies in the potential risks posed to critical infrastructure and the importance of timely updates to maintain security.
Fortinet Patches CVE-2025-32756 Zero-Day RCE Flaw Exploited in FortiVoice Systems
Fortinet has addressed a critical zero-day vulnerability, CVE-2025-32756, which was actively exploited in attacks against FortiVoice enterprise phone systems. The flaw, with a high CVSS score of 9.6, allows remote unauthenticated attackers to execute arbitrary code.
Ivanti Patches EPMM Vulnerabilities Exploited for Remote Code Execution in Limited Attacks
Ivanti has issued security updates to fix two vulnerabilities in its Endpoint Manager Mobile (EPMM) software that could allow for remote code execution through an authentication bypass. The significance of these flaws lies in their exploitation potential, which could lead to unauthorized access to protected resources.
Hacktivists Make Little Impact During India-Pakistan Conflict
The article discusses the recent claims by hacktivists of over 100 successful cyberattacks against Indian government and military targets during the India-Pakistan conflict. However, it highlights that many of these claims were exaggerated or unfounded, indicating a limited actual impact from these hacktivist activities.
Building Effective Security Programs Requires Strategy, Patience, and Clear Vision
The article discusses insights from Capital One executives on the importance of strategic planning, patience, and a clear vision in designing effective security programs. It emphasizes the need for organizations to implement passwordless solutions and strategies to reduce their attack surface to enhance overall cybersecurity.
Windows Zero-Day Bug Exploited for Browser-Led RCE
A zero-day vulnerability in Windows has been exploited for remote code execution (RCE) via browsers, highlighting significant security risks. Microsoft's May 2025 Patch Tuesday update addresses this and several other critical vulnerabilities, underscoring the ongoing threat landscape.
Chinese Actor Hit Taiwanese Drone Makers, Supply Chains
The article discusses a cybersecurity threat posed by a Chinese actor known as Tidrone, which targets Taiwanese drone manufacturers and their supply chains, particularly in military and satellite sectors. This attack highlights the vulnerabilities within the interconnected supply chains of critical technologies and raises concerns about national security.
Adobe Patches Big Batch of Critical-Severity Software Flaws
Adobe has released a significant update addressing critical vulnerabilities in its software, particularly focusing on Adobe ColdFusion. This update is crucial for mitigating risks associated with code execution and privilege escalation attacks.
What Does EU's Bug Database Mean for Vulnerability Tracking?
The EU cyber agency ENISA has introduced the EU vulnerability database (EUVD), which aims to enhance the tracking of vulnerabilities and improve the management of Common Vulnerabilities and Exposures (CVEs). This initiative is significant as it fosters a more systematic approach to vulnerability tracking across the EU, potentially impacting cybersecurity practices and policies.
Microsoft to Lay Off About 3% of Its Workforce
Microsoft is set to lay off approximately 3% of its workforce, which translates to around 6,000 employees. This significant reduction reflects broader trends in the tech industry and may have implications for its operational capabilities and market position.
CISA Warns of TeleMessage Vuln Despite Low CVSS Score
CISA has issued a warning regarding a vulnerability in the TeleMessage app, which claims to use end-to-end encryption. Despite its low CVSS score, hackers have been able to access archived data on the app's servers, highlighting significant security concerns.
Zero-Day Attacks Highlight Another Busy Microsoft Patch Tuesday
Microsoft addressed at least 70 security vulnerabilities in its latest Patch Tuesday, including five zero-days that are currently being exploited. This highlights the ongoing challenges organizations face in securing their systems against active threats.
China-Linked APTs Exploit SAP CVE-2025-31324 to Breach 581 Critical Systems Worldwide
A critical security flaw in SAP NetWeaver, identified as CVE-2025-31324, is being exploited by China-linked nation-state actors to breach critical infrastructure networks globally. This unauthenticated file upload vulnerability allows for remote code execution, posing significant risks to affected systems.
Malicious PyPI Package Posing as Solana Tool Stole Source Code in 761 Downloads
Researchers have identified a malicious package named 'solana-token' on the Python Package Index (PyPI) that masqueraded as a Solana blockchain tool but was designed to steal source code and developer secrets. Despite being removed from PyPI, the package was downloaded 761 times, highlighting significant risks associated with third-party package repositories.