@allthebuzz.bsky.social
#exploit #vulnerability #zeroday #flaw #POC for Lenovo dispatcher driver CVE-2025-8061
github.com/segura2010/l...
github.com/segura2010/l...
GitHub - segura2010/lenovo-dispatcher-poc: PoC to exploit lenovo dispatcher driver (LnvMSRIO.sys) (CVE-2025-8061)
PoC to exploit lenovo dispatcher driver (LnvMSRIO.sys) (CVE-2025-8061) - segura2010/lenovo-dispatcher-poc
github.com
November 18, 2025 at 5:52 PM
#exploit #vulnerability #zeroday #flaw #POC for Lenovo dispatcher driver CVE-2025-8061
github.com/segura2010/l...
github.com/segura2010/l...
#exploit #vulnerability #RCE #zeroday #flaw #POC for Remote Code Execution Vulnerability in pgAdmin 4 CVE-2025-2945 github.com/pgadmin-org/...
Fixed a remote code execution issue in the Query Tool and Cloud Deplo… · pgadmin-org/pgadmin4@75be0bc
…yment (CVE-2025-2945). #8603
github.com
November 18, 2025 at 5:51 PM
#exploit #vulnerability #RCE #zeroday #flaw #POC for Remote Code Execution Vulnerability in pgAdmin 4 CVE-2025-2945 github.com/pgadmin-org/...
#exploit #vulnerability #zeroday #flaw #POC for Tenda AC20 Router WifiExtraSet Buffer Overflow CVE-2025-13258
CVSS 3.x Base Score: 8.8 HIGH
github.com/DavCloudz/cv...
CVSS 3.x Base Score: 8.8 HIGH
github.com/DavCloudz/cv...
github.com
November 18, 2025 at 5:49 PM
#exploit #vulnerability #zeroday #flaw #POC for Tenda AC20 Router WifiExtraSet Buffer Overflow CVE-2025-13258
CVSS 3.x Base Score: 8.8 HIGH
github.com/DavCloudz/cv...
CVSS 3.x Base Score: 8.8 HIGH
github.com/DavCloudz/cv...
#exploit #vulnerability #zeroday #flaw #POC for CVE-2025-13188 D-Link DIR-816L 2_06_b09_beta CVSS: 8.9 HIGH github.com/scanleale/IO...
github.com
November 18, 2025 at 5:47 PM
#exploit #vulnerability #zeroday #flaw #POC for CVE-2025-13188 D-Link DIR-816L 2_06_b09_beta CVSS: 8.9 HIGH github.com/scanleale/IO...
www.securityweek.com/sonicwall-sa... SonicWall saga continues?
SonicWall Says Recent Attacks Don't Involve Zero-Day Vulnerability
SonicWall investigating reports about a zero-day being exploited in ransomware attacks, but found no evidence of a new vulnerability.
www.securityweek.com
August 8, 2025 at 5:26 PM
www.securityweek.com/sonicwall-sa... SonicWall saga continues?
thehackernews.com/2025/08/akir... Akira Ransomware Exploits SonicWall VPNs on possibly a Zero-Day Attack on Fully-Patched Devices
Akira Ransomware Exploits SonicWall VPNs in Likely Zero-Day Attack on Fully-Patched Devices
Akira ransomware exploits SonicWall SSL VPNs, hitting patched devices. Organizations face risks from possible zero-day flaw.
thehackernews.com
August 4, 2025 at 5:13 PM
thehackernews.com/2025/08/akir... Akira Ransomware Exploits SonicWall VPNs on possibly a Zero-Day Attack on Fully-Patched Devices
thehackernews.com/2025/07/appl... Patch your Apple device!
Apple Patches Safari Vulnerability Also Exploited as Zero-Day in Google Chrome
Apple and Google fix CVE-2025-6558, a zero-day bug in Chrome and Safari risking browser security.
thehackernews.com
July 30, 2025 at 7:51 PM
thehackernews.com/2025/07/appl... Patch your Apple device!
Whoa...#BlueNoroff is Zooming with new tricks - 3 reports in the past two days...lots of IoCs to cover www.huntress.com/blog/inside-... and fieldeffect.com/blog/zoom-do... and www.validin.com/blog/zooming...
Inside the BlueNoroff Web3 macOS Intrusion Analysis | Huntress
Learn how DPRK's BlueNoroff group executed a Web3 macOS intrusion. Explore the attack chain, malware, and techniques in our detailed technical report.
www.huntress.com
June 20, 2025 at 5:54 PM
Whoa...#BlueNoroff is Zooming with new tricks - 3 reports in the past two days...lots of IoCs to cover www.huntress.com/blog/inside-... and fieldeffect.com/blog/zoom-do... and www.validin.com/blog/zooming...
www.bleepingcomputer.com/news/securit... ScreenConnect? More like ThreatConnect...
ConnectWise rotating code signing certificates over security concerns
ConnectWise is warning customers that it is rotating the digital code signing certificates used to sign ScreenConnect, ConnectWise Automate, and ConnectWise RMM executables over security concerns.
www.bleepingcomputer.com
June 11, 2025 at 1:29 PM
www.bleepingcomputer.com/news/securit... ScreenConnect? More like ThreatConnect...
Apply Windows update now #PatchTuesday CVE-2025-33053 exploited by APT Stealth Falcon research.checkpoint.com/2025/stealth...
Stealth Falcon's Exploit of Microsoft Zero Day Vulnerability - Check Point Research
Check Point Research uncovers Stealth Falcon's cyber espionage campaign exploiting a Microsoft Zero Day Vulnerability
research.checkpoint.com
June 10, 2025 at 5:51 PM
Apply Windows update now #PatchTuesday CVE-2025-33053 exploited by APT Stealth Falcon research.checkpoint.com/2025/stealth...
Heroku - outage? incident? www.bleepingcomputer.com/news/technol...
Massive Heroku outage impacts web platforms worldwide
Heroku is suffering a widespread outage that has lasted over six hours, preventing developers from logging into the platform and breaking website functionality.
www.bleepingcomputer.com
June 10, 2025 at 5:35 PM
Heroku - outage? incident? www.bleepingcomputer.com/news/technol...
www.crn.com/news/channel... Good example of poor reporting - not dates, no CVEs, no source. Just clickbait recycling of old news. #crn #screenconnect
ConnectWise Confirms ScreenConnect Cyberattack, Says Systems Now Secure: Exclusive
ConnectWise did not disclose information about when the data breach occurred, as well as the number of MSPs or end users impacted by the breach.
www.crn.com
May 29, 2025 at 2:59 PM
www.crn.com/news/channel... Good example of poor reporting - not dates, no CVEs, no source. Just clickbait recycling of old news. #crn #screenconnect
Reposted
The DragonForce ransomware operation successfully breached a managed service provider and used its SimpleHelp remote monitoring and management (RMM) platform to steal data and deploy encryptors on downstream customers' systems.
DragonForce ransomware abuses MSP’s SimpleHelp RMM to encrypt customers
The DragonForce ransomware operation successfully breached a managed service provider and used its SimpleHelp remote monitoring and management (RMM) platform to steal data and deploy encryptors on downstream customers' systems.
www.bleepingcomputer.com
May 27, 2025 at 9:44 PM
The DragonForce ransomware operation successfully breached a managed service provider and used its SimpleHelp remote monitoring and management (RMM) platform to steal data and deploy encryptors on downstream customers' systems.
www.theregister.com/2025/05/27/m... Mathworks ransomware incident (MATLAB )
MathWorks’ ransomware disruptions rages on into second week
: Commercial customers, STEM students all feeling the pain after mega outage of engineering data-analysis tool
www.theregister.com
May 27, 2025 at 10:13 PM
www.theregister.com/2025/05/27/m... Mathworks ransomware incident (MATLAB )
Regular patch schedule for this one thehackernews.com/2025/05/micr...
Microsoft Fixes 78 Flaws, 5 Zero-Days Exploited; CVSS 10 Bug Impacts Azure DevOps Server
Microsoft patched 78 flaws, including 5 exploited zero-days, prompting CISA mandates for June 3 fixes.
thehackernews.com
May 14, 2025 at 2:18 PM
Regular patch schedule for this one thehackernews.com/2025/05/micr...
www.linkedin.com/pulse/scatte... Awesome write up on #ScatteredSpider #SpectreRAT #DragonForceRansomware
Scattered Spider: 2025 Threat Profile
Learn how Performanta’s Safe XDR detects, hunts, and stops advanced threats like Scattered Spider — protecting against ransomware and credential theft.
www.linkedin.com
May 2, 2025 at 6:49 PM
www.linkedin.com/pulse/scatte... Awesome write up on #ScatteredSpider #SpectreRAT #DragonForceRansomware
Reposted
Critical Commvault RCE vulnerability fixed, PoC available (CVE-2025-34028) - Help Net Security www.helpnetsecurity.com/2025/04/24/c...
Critical Commvault RCE vulnerability fixed, PoC available (CVE-2025-34028) - Help Net Security
A critical Commvault Command Center vulnerability (CVE-2025-34028) that could allow unauthenticated remote code execution has been fixed.
www.helpnetsecurity.com
April 27, 2025 at 10:05 AM
Critical Commvault RCE vulnerability fixed, PoC available (CVE-2025-34028) - Help Net Security www.helpnetsecurity.com/2025/04/24/c...
CVE-2024-54085 AMI MegaRAC vulnerability is known to affect HPE, ASUS, NetApp and ASRock so far go.ami.com/hubfs/Securi...
go.ami.com
April 23, 2025 at 8:56 PM
CVE-2024-54085 AMI MegaRAC vulnerability is known to affect HPE, ASUS, NetApp and ASRock so far go.ami.com/hubfs/Securi...
Symbolic links used to maintain access to patched FortiGate VPNs www.fortinet.com/blog/psirt-b... #forti #fortios #cyber #symlinks
Analysis of Threat Actor Activity | Fortinet Blog
Fortinet diligently balances our commitment to the security of our customers and our culture of responsible transparency and commits to sharing information with that goal in mind. While efforts by …
www.fortinet.com
April 11, 2025 at 6:04 PM
Symbolic links used to maintain access to patched FortiGate VPNs www.fortinet.com/blog/psirt-b... #forti #fortios #cyber #symlinks
Critical Ivanti Connect Secure #Vulnerability CVE-2025-22457 #exploited #cyber #CVE #flaw
cloud.google.com/blog/topics/...
cloud.google.com/blog/topics/...
Suspected China-Nexus Threat Actor Actively Exploiting Critical Ivanti Connect Secure Vulnerability (CVE-2025-22457) | Google Cloud Blog
cloud.google.com
April 3, 2025 at 3:30 PM
Critical Ivanti Connect Secure #Vulnerability CVE-2025-22457 #exploited #cyber #CVE #flaw
cloud.google.com/blog/topics/...
cloud.google.com/blog/topics/...
CVE-2024-54085 : CVSS v4 score of 10. The firmware is used by multiple server vendors that provide equipment to many cloud service and data center providers. Redfish can use SSDP to advertise its management interface, the banner is Linux/3.18.0 Redfish/ redfish.dmtf.org/schemas/DSP0...
Redfish Scalable Platforms Management API Specification
redfish.dmtf.org
March 20, 2025 at 2:09 PM
CVE-2024-54085 : CVSS v4 score of 10. The firmware is used by multiple server vendors that provide equipment to many cloud service and data center providers. Redfish can use SSDP to advertise its management interface, the banner is Linux/3.18.0 Redfish/ redfish.dmtf.org/schemas/DSP0...