On October 23, 2025, Microsoft released an out-of-band update to address a critical vulnerability in Windows Server Update Service (WSUS). This vulnerability could allow a remote unauthenticated attacker to execute code on the targeted systems. A proof-of-concept is publicly available for this vulnerability. It is recommended to update as soon as possible.
On October 14, 2025, Fortinet released a security advisory addressing a high severity vulnerability in its FortiOS product. It is recommended...
On October 14, 2025, Veeam released a security advisory addressing multiple vulnerabilities, including two critical ones, in its Veeam Backup...
On October 15, 2025, F5 disclosed a breach by a sophisticated nation-state actor. This actor maintained long-term persistent access to F5's...
Cyber Briefs are monthly executive reports providing an overview of relevant cybersecurity developments. They are based exclusively on open...
On September 25, 2025, Cisco released several security advisories addressing 3 vulnerabilities, 2 of which are critical. Cisco warns that some of...
On September 24, 2025, Cisco released a security advisory regarding a high severity vulnerability in the Simple Network Management Protocol (SNMP)...
On September 17, 2025, SolarWinds released a security advisory addressing a critical vulnerability in its Web Help Desk product. The fix provided...
Cyber Briefs are monthly executive reports that aim to present an overview of the most relevant developments in cyber security, based exclusively...
On August 13, 2025, Microsoft released its August 2025 Patch Tuesday advisory addressing 111 security flows in various products among which 16 are...
On August 12, 2025, Fortinet released security advisories addressing several vulnerabilities, including a critical one exploited in the wild, and...
On August 6, 2025, Microsoft issued an advisory for a high-severity vulnerability affecting Microsoft Exchange hybrid environments. The...
On August 4, 2025, SonicWall issued an advisory regarding a possible zero-day vulnerability in the Gen 7 SonicWall firewalls. A remote attacker...
Cyber Briefs are monthly executive reports presenting an overview of relevant cybersecurity developments. They are based exclusively on open...
Apple has released security updates to address a high-severity vulnerability that has been exploited in zero-day attacks targeting Google Chrome users.
Lenovo is warning about high-severity BIOS flaws that could allow attackers to potentially bypass Secure Boot in all-in-one desktop PC models that...
Cybersecurity researchers have revealed the existence of critical security vulnerabilities within the firmware of Dahua smart cameras. These...
A critical vulnerability (CVE-2025-54418) in CodeIgniter4's ImageMagick handler allows command injection, affecting millions of web applications....
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday incorporated a high-severity security vulnerability into its Known...
Gaming peripherals maker Endgame Gear is warning that malware was hidden in its configuration tool for the OP1w 4k v2 mouse. This tool was hosted...
Attackers could use a recently patched macOS vulnerability to bypass Transparency, Consent, and Control (TCC) security checks. This flaw allows...
CISA warns that threat actors are exploiting a high-severity vulnerability in PaperCut NG/MF print management software, which can allow them to...
Windows 11 22H2 are scheduled to reach their end of servicing on October 14.
Scattered Spider hackers have been aggressively targeting virtualized environments by attacking VMware ESXi hypervisors. They are focusing on U.S....
A new Linux malware named Koske may have been developed with artificial intelligence and is using seemingly benign JPEG images of panda bears to...
CrushFTP is warning that threat actors are actively exploiting a zero-day vulnerability tracked as CVE-2025-54309, which allows attackers to gain...
Microsoft SharePoint servers hit by Warlock ransomware in new attacks.
CISA has warned that attackers are actively exploiting two security vulnerabilities in the SysAid IT service management (ITSM) software to hijack...
Microsoft has released the KB5062660 preview cumulative update for Windows 11 24H2 with twenty-nine new features or changes, with many gradually...
The United Kingdom's government is planning to ban public sector and critical infrastructure organizations from paying ransoms after ransomware...
Microsoft is asking businesses to reach out for support to mitigate a known issue causing Cluster service and VM restart issues after installing...
