ARTIKEL SUCHE
Threat Feed QueryDurchsuche alle aggregierten Security-Artikel nach Schlagworten, CVE-IDs und Quellen.
Building digital resilience in retail
<html><body><p>Retailers are not having an easy time. The June 2025 report from the <a target="_blank" href="https://www.cbi.org.uk/media-centre/articles/retail-sales-fall-for-the-ninth-consecutive-month-cbi-dis
Atomic macOS Stealer Comes With New Backdoor to Enable Remote Access
<html><body><p>The Atomic macOS Stealer (AMOS) has undergone a significant evolution, transforming from a traditional information stealer into a sophisticated persistent threat capable of maintaining long-term access to
Exploit available for critical Cisco ISE bug exploited in attacks
<html><body>Security researcher Bobby Gould has published a blog post demonstrating a complete exploit chain for CVE-2025-20281, an unauthenticated remote code execution vulnerability in Cisco Identity Services Engine (I
CVE-2025-54416
<html><body>Currently trending CVE - Hype Score: 10 - tj-actions/branch-names is a Github actions repository that contains workflows to retrieve branch or tag names with support for all events. In versions 8.2.1 and belo
UNC3886 Hackers Exploiting 0-Days in VMware vCenter/ESXi, Fortinet FortiOS, and Junos OS
<html><body><p>Singapore’s critical infrastructure is under siege from UNC3886, a sophisticated China-linked advanced persistent threat (APT) group. As of July 2025, the group has been actively targeting essential servic
Critical WordPress Post SMTP plugin flaw exposes 200K+ sites to full takeover
<html><body>Critical vulnerability in Post SMTP plugin risks full site takeover, over 400k sites use it, and nearly half remain unpatched. A critical vulnerability, tracked as CVE-2025-24000 (CVSS of 8.8) in the Post SMT
Women’s Dating App Tea Exposes Selfie Images of 13,000 Users
<html><body><p>The women-only dating safety app Tea has suffered a significant cybersecurity incident, with hackers gaining unauthorized access to approximately 72,000 user images, including 13,000 sensitive selfies and
New “ToolShell” Exploit Chain Attacking SharePoint Servers to Gain Complete Control
<html><body><p>A critical new threat targeting Microsoft SharePoint servers through a sophisticated exploit chain dubbed “ToolShell.” This multi-stage attack combines previously patched vulnerabilities with fresh zero-da
12 Best Infrastructure Monitoring Tools in 2025
<html><body><p>Infrastructure monitoring tools are critical for ensuring IT infrastructure’s optimal performance, availability, and security. These tools provide comprehensive visibility into the health and status of var
Hackers Compromise Intelligence Website Used by CIA and Other Agencies
<html><body><p>Unidentified hackers have successfully breached a critical intelligence website used by the CIA and other U.S. agencies to manage sensitive government contracts, according to the National Reconnaissance Of
Critical Salesforce Tableau Vulnerabilities Let Attackers Execute Code Remotely
<html><body><p>Multiple critical security vulnerabilities affecting Salesforce’s Tableau Server that could allow attackers to execute remote code, bypass authorization controls, and access sensitive production databases.
Microsoft Probes Leak in Early Alert System as Chinese Hackers Exploit SharePoint Vulnerabilities
<html><body><p>Microsoft Corp. is investigating whether a leak from its Microsoft Active Protections Program (MAPP) enabled Chinese state-sponsored hackers to exploit critical SharePoint vulnerabilities before patches we
Mitel patches critical MiVoice MX-ONE Auth bypass flaw
<html><body>Mitel addressed a critical MiVoice MX-ONE flaw that could allow an unauthenticated attacker to conduct an authentication bypass attack. A critical authentication bypass flaw (CVSS score of 9.4) in Mitel MiVoi
Why the Middle East is winning the quantum race
<html><body><p>The year 2025 has been declared the International Year of Quantum Science by the United Nations (UN). Meanwhile, while Western nations debate policies and navigate regulatory complexities, an unexpec
Mitel warns of critical MiVoice MX-ONE authentication bypass flaw
<html><body>Mitel Networks has released security updates to patch a critical-severity authentication bypass vulnerability impacting its MiVoice MX-ONE enterprise communications platform. [...]</body></html>
US seeks ‘unquestioned’ AI dominance
<html><body><p>The United States government this week unveiled its <a href="https://www.whitehouse.gov/wp-content/uploads/2025/07/Americas-AI-Action-Plan.pdf" target="_blank" rel="noopener">Artificial Intelli
SonicWall fixed critical flaw in SMA 100 devices exploited in Overstep malware attacks
<html><body>SonicWall addressed a critical vulnerability, tracked as CVE-2025-40599 (CVSS score of 9.1), in SMA 100 appliances SonicWall addressed a critical vulnerability, tracked as CVE-2025-40599 (CVSS score of 9.1),
Scattered Spider victim Clorox sues helpdesk provider
<html><body><p>IT services provider <a href="https://www.cognizant.com/uk/en" target="_blank" rel="noopener">Cognizant</a> is facing a multimillion-dollar lawsuit from one of its customers, which claims
SonicWall urges admins to patch critical RCE flaw in SMA 100 devices
<html><body>SonicWall urges customers to patch SMA 100 series appliances against a critical authenticated arbitrary file upload vulnerability that can let attackers gain remote code execution. [...]</body></html>
Sophos fixed two critical Sophos Firewall vulnerabilities
<html><body>Sophos addressed five Sophos Firewall vulnerabilities that could allow remote attackers to execute arbitrary code. Sophos has fixed five vulnerabilities (CVE-2025-6704, CVE-2025-7624, CVE-2025-7382, CVE-2024-