by Beck Bailey | Jul 20, 2025 | RSS
A critical security vulnerability in Microsoft SharePoint Server has been weaponized as part of an “active, large-scale” exploitation campaign. The zero-day flaw, tracked as CVE-2025-53770 (CVSS score: 9.8), has been described as a variant of...
by Beck Bailey | Jul 20, 2025 | RSS
Cybersecurity researchers have alerted to a supply chain attack that has targeted popular npm packages via a phishing campaign designed to steal the project maintainers’ npm tokens. The captured tokens were then used to publish malicious versions of the packages...
by Beck Bailey | Jul 20, 2025 | RSS
A newly disclosed critical security flaw in CrushFTP has come under active exploitation in the wild. Assigned the CVE identifier CVE-2025-54309, the vulnerability carries a CVSS score of 9.0. “CrushFTP 10 before 10.8.5 and 11 before 11.3.4_23, when the DMZ proxy...
by Beck Bailey | Jul 19, 2025 | RSS
The EU has released a guide for how large AI makers can comply with the AI Act’s newly instituted rules to prevent systemic risks.
by Beck Bailey | Jul 18, 2025 | RSS
Cybersecurity researchers have shed light on a mobile forensics tool called Massistant that’s used by law enforcement authorities in China to gather information from seized mobile devices. The hacking tool, believed to be a successor of MFSocket, is developed by...
Recent Comments