A critical vulnerability in Ivanti products, CVE-2025-22457, is being actively exploited by the Chinese state-sponsored threat actor UNC5221, posing significant security risks to organizations.
A joint advisory from major cybersecurity agencies highlights the growing exploitation of Fast Flux techniques by cybercriminals and nation-state actors, complicating threat detection and posing significant risks to national security.
A critical authentication bypass vulnerability in CrushFTP, tracked as CVE-2025-31161 and CVE-2025-2825, enables remote attackers to gain unauthorized access to unpatched systems, posing significant security risks.
Highline Public Schools in Seattle faced a ransomware attack on September 7, 2024, resulting in the breach of sensitive personal, financial, and medical data of individuals associated with the district.
The cyber threat actor Coquettte is using the services of Proton66, a Russian bulletproof hosting provider, to distribute malware disguised as legitimate software through a fraudulent website promoting a fake antivirus product.
Security services implement user blocking to mitigate online attack risks by responding to suspicious activities and protecting sensitive information.
