Microsoft Patch Tuesday (Feb 2025): 61 Vulnerabilities, 25 RCE, 3 Zero-Day
Microsoft’s February 2025 Patch Tuesday fixes multiple vulnerabilities, including critical RCE and privilege escalation flaws. Users and organizations should update immediately to stay protected. All about the vulnerability The February [...]
Fortinet Zero-Day Exploited to Hijack Firewall & Gain Super Admin
Fortinet has issued an urgent warning about a critical zero-day vulnerability (CVE-2025-24472) in FortiOS and FortiProxy. The flaw allows remote attackers to bypass authentication and gain super-admin privileges by exploiting [...]
Microsoft SharePoint Connector flaw enables credential theft
A critical SSRF flaw in Microsoft Power Platform’s SharePoint connector let attackers steal credentials and impersonate users across multiple services. The patched vulnerability posed major risks to organizations using SharePoint. [...]
Apple 0-Day Vulnerability Exploited in Highly Sophisticated Attacks
Apple released iOS 18.3.1 and iPadOS 18.3.1 to fix a zero-day vulnerability exploited in targeted attacks by bypassing USB Restricted Mode. This feature blocks unauthorized USB access when a device [...]
Hackers are brute-forcing web login pages of popular firewalls
ShadowServer reports a surge in brute-force attacks on edge device logins, with up to 2.8 million IPs daily, mainly from Brazil, targeting firewalls, VPNs, and IoT systems from major vendors. [...]
Get Social