Articles tagged "Critical"

Found 915 articles

Critical
Top Ransomware Trends of 2025

Infosecurity Magazine

Actively Exploited

In 2025, ransomware attacks have shown a significant increase, with various industries facing heightened risks. The report outlines key statistics that reveal the evolving tactics used by attackers, including targeted assaults on critical infrastructure and healthcare systems. Companies are increasingly vulnerable as ransomware groups adapt, often deploying double extortion techniques that not only encrypt data but also threaten to leak sensitive information if ransoms are not paid. This trend poses serious implications for businesses, as the financial and reputational damage from such attacks can be substantial. Organizations are urged to bolster their cybersecurity measures and educate employees about phishing and other attack vectors to mitigate these risks.

Read Original

On Monday, the French national postal service experienced a significant network incident that disrupted its online services, impacting millions of users. This outage not only affected postal operations but also severely impacted digital banking services across the country. As a result, customers faced difficulties accessing their accounts and processing transactions. The incident raises concerns about the resilience of critical infrastructure against cyberattacks, especially as more services rely on digital platforms. Authorities are investigating the cause of the disruption to ensure better protection in the future.

Read Original

A serious vulnerability has been found in the n8n workflow automation platform that could allow attackers to execute arbitrary code on affected systems. This flaw, known as CVE-2025-68613, has a CVSS score of 9.9, indicating a critical risk level. Discovered by security researcher Fatih Çelik, the vulnerability impacts numerous instances of n8n, potentially exposing sensitive workflows and data to exploitation. Organizations using n8n need to take immediate action to secure their systems, as such vulnerabilities can lead to significant data breaches and operational disruptions. Users are urged to monitor for updates and apply necessary patches to mitigate the risk of attack.

Read Original

A recent cyberattack has severely disrupted France's national postal service, leading to significant delays in package deliveries and hindering online payment systems during the busy Christmas season. The attack has affected not only the postal service but also banking operations, complicating transactions for many users. This incident comes at a peak time for holiday shopping, raising concerns about the security of essential services during critical periods. As a result, many customers are left frustrated and uncertain about their deliveries and payments. The attack underscores the vulnerabilities that essential services face in an increasingly digital economy.

Read Original

The National Institute of Standards and Technology (NIST) and MITRE have announced a $20 million initiative aimed at researching the role of artificial intelligence in cybersecurity, particularly concerning critical infrastructure. This new research center will unite experts from both government and industry to explore how AI can enhance security measures and address vulnerabilities. The focus is on understanding AI's potential to both bolster defenses against cyber threats and the risks it may introduce. Given the increasing reliance on technology for essential services, this research could have significant implications for national security and public safety. The collaboration aims to prepare for future challenges in cybersecurity as AI continues to evolve.

Read Original

WatchGuard has reported an exploitation of a zero-day vulnerability in its Firebox devices, which are critical components for network security. This vulnerability has caught the attention of attackers, joining a troubling trend where various edge device vendors are targeted. Organizations using WatchGuard Firebox devices should be particularly vigilant, as the flaw could allow unauthorized access to their networks. The situation emphasizes the need for prompt attention to security updates and patches to protect against potential breaches. Users and IT departments are advised to stay updated on any security advisories from WatchGuard to mitigate risks effectively.

Read Original
Actively Exploited

A serious remote code execution (RCE) vulnerability has been discovered in WatchGuard Firebox devices, impacting over 115,000 units that are currently exposed online. Attackers are actively exploiting this flaw, which allows them to execute arbitrary code on the affected firewalls. This vulnerability poses a significant risk to organizations using these devices, as it could lead to unauthorized access and control over network resources. Users of WatchGuard Firebox products are urged to take immediate action to protect their systems. The urgency of addressing this issue is heightened by the active nature of the exploitation, making it critical for companies to ensure their devices are patched as soon as possible.

Read Original

The hacking group known as LongNosedGoblin has been targeting Asian governments by deploying cyberespionage tools on their networks using Group Policy. This method allows them to effectively infiltrate and operate within government systems, raising concerns about national security and data integrity. Researchers have identified this group as a persistent threat, which could compromise sensitive information and disrupt governmental operations. The implications are significant, as such attacks could weaken trust in governmental digital infrastructures and potentially expose critical data to adversaries. As this activity continues, it emphasizes the need for robust cybersecurity measures in governmental organizations to protect against such sophisticated attacks.

Read Original

Danish intelligence officials have accused Russia of launching cyberattacks on Denmark's water utility, which is part of a broader pattern of hybrid attacks targeting Western countries. The attacks are believed to threaten critical infrastructure, raising concerns about the security of essential services. The specific impact on the water utility has not been detailed, but such incidents could disrupt water supply and compromise public safety. This situation highlights ongoing geopolitical tensions and the increasing role of cyber warfare in international relations. As countries like Denmark bolster their defenses, the implications for national security and public trust in infrastructure are significant.

Read Original

WatchGuard has alerted its customers about a serious remote code execution vulnerability affecting its Firebox firewalls. This flaw is currently being exploited by attackers, which raises significant security concerns for users who have not yet applied the necessary patches. The vulnerability allows unauthorized individuals to execute commands on affected devices, potentially compromising network security. Customers are urged to act swiftly to mitigate risks by updating their systems. This situation underscores the critical need for timely software updates in maintaining cybersecurity.

Read Original

Cisco has disclosed a critical zero-day vulnerability, tracked as CVE-2025-20393, affecting its Secure Email Gateway and Secure Email/Web Manager products. This vulnerability is currently being exploited by a China-linked advanced persistent threat group known as UAT-9686. The attack campaign began on December 10 and targets specific systems, raising significant concerns for organizations relying on these Cisco products. Users and administrators should be particularly vigilant, as this active exploitation could lead to unauthorized access and data breaches. The urgency of addressing this vulnerability cannot be overstated, given its potential impact on email security and the sensitive information handled by these systems.

Read Original
Actively Exploited

SonicWall's SMA1000 devices are facing a serious security threat due to a newly discovered zero-day vulnerability. Attackers have combined this flaw with another critical vulnerability that was revealed earlier this year, creating a dangerous situation for users. This means that anyone using these devices may be at risk of exploitation, potentially allowing unauthorized access to sensitive systems. Companies that rely on SonicWall for secure access should take immediate action to assess their security and implement any available patches. The situation emphasizes the need for vigilance and timely updates in cybersecurity practices.

Read Original

Hewlett Packard Enterprise (HPE) has addressed a serious security vulnerability in its OneView software that allows unauthenticated remote code execution. This flaw, identified as CVE-2025-37164, has been rated with a CVSS score of 10.0, indicating its critical nature. HPE OneView, used for managing IT infrastructure, could potentially allow attackers to take control of affected systems without needing to authenticate. This vulnerability can impact organizations relying on this software for IT operations, making it crucial for users to apply the necessary updates to safeguard their environments. HPE's prompt action to patch this flaw is vital in preventing potential exploitation by malicious actors.

Read Original
Actively Exploited

French authorities have arrested two crew members of an Italian passenger ferry, including a Latvian national, for allegedly installing malware on the vessel. This malware could have allowed them to gain remote control over the ship, raising serious concerns about maritime security. The incident underscores the vulnerabilities that can exist in critical infrastructure like passenger ferries, where cyberattacks could potentially endanger lives and disrupt operations. Authorities are investigating the extent of the malware's capabilities and the intentions behind its installation. This case serves as a reminder for the maritime industry to enhance cybersecurity measures to protect against similar threats.

Read Original

Hewlett Packard Enterprise (HPE) has released a critical patch for a severe vulnerability in its HPE OneView software that allows attackers to execute arbitrary code remotely. This flaw poses a significant risk as it could enable cybercriminals to take control of affected systems without any user intervention. Organizations using HPE OneView are urged to apply the patch immediately to protect their infrastructure from potential exploitation. The impact of this vulnerability could be extensive, affecting businesses that rely on this software for managing their IT environments. Users should ensure they are running the latest version to mitigate this serious threat.

Read Original
PreviousPage 54 of 61Next