Medusa Ransomware Group Tied to Exploits of Now-Patched Zero-Day Vulnerability Recent attacks targeting Fortra's GoAnywhere managed file transfer software exploited a "limited" number of customers who set their on-premises installations to have an administrative console publicly exposed to the internet, which the vendor recommends customers never do.
AI Actions Bypass Security Tools Artificial intelligence-powered browsers could expose enterprises to data theft, malware distribution and unauthorized access to corporate apps, new research shows. AI browsers built to complete tasks autonomously lack the security awareness to verify whether an instruction is safe.
Also: Shutdown's Ripple Effects on Healthcare, Mounting Threats to Aging OT Systems In this week's update, four ISMG editors discussed the fallout from the U.S. federal shutdown and the impact on state and regional cyber offices, the knock-on effects for healthcare, and the growing cyberthreats facing aging operational technology environments.
Akira Ransomware Hackers Targeting SonicWall Devices Firewall maker SonicWall said Friday all customers who used its cloud backup services are at increased "risk of targeted attacks" following a recent cyberattack. The California firm in September disclosed that unidentified hackers launched brute-force attacks against servers storing backup files.
Medusa Ransomware Group Tied to Exploits of Now-Patched Zero-Day Vulnerability Recent attacks targeting Fortra's GoAnywhere managed file transfer software exploited a "limited" number of customers who set their on-premises installations to have an administrative console publicly exposed to the internet, which the vendor recommends customers never do.
AI Actions Bypass Security Tools Artificial intelligence-powered browsers could expose enterprises to data theft, malware distribution and unauthorized access to corporate apps, new research shows. AI browsers built to complete tasks autonomously lack the security awareness to verify whether an instruction is safe.
Also: Shutdown's Ripple Effects on Healthcare, Mounting Threats to Aging OT Systems In this week's update, four ISMG editors discussed the fallout from the U.S. federal shutdown and the impact on state and regional cyber offices, the knock-on effects for healthcare, and the growing cyberthreats facing aging operational technology environments.
Akira Ransomware Hackers Targeting SonicWall Devices Firewall maker SonicWall said Friday all customers who used its cloud backup services are at increased "risk of targeted attacks" following a recent cyberattack. The California firm in September disclosed that unidentified hackers launched brute-force attacks against servers storing backup files.
A vulnerability was found in ZHENFENG13/code-projects My-Blog-layui 1.0. It has been rated as critical. This affects the function Upload of the file /admin/upload/authorImg/. Performing manipulation of the argument File results in unrestricted upload.
This vulnerability is reported as CVE-2025-3593. The attack is possible to be carried out remotely. Moreover, an exploit is present.
The vendor was contacted early about this disclosure but did not respond in any way.
A vulnerability described as critical has been identified in PeerTube up to 7.1.0. Impacted is an unknown function of the component HLS Video Handler. Such manipulation leads to path traversal.
This vulnerability is traded as CVE-2025-32943. The attack may be launched remotely. There is no exploit available.
Upgrading the affected component is recommended.
A vulnerability was found in 20120630 Novel-Plus up to 0e156c04b4b7ce0563bef6c97af4476fcda8f160. It has been rated as critical. This affects the function list of the file nnovel-admin/src/main/java/com/java2nb/common/controller/LogController.java. Performing manipulation results in improper authorization.
This vulnerability is cataloged as CVE-2025-4017. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
The vendor was contacted early about this disclosure but did not respond in any way.
Microsoft has reminded customers again today that systems running Home and Pro editions of Windows 11 23H2 will stop receiving security updates next month. [...]
Threat actors are exploiting a zero-day vulnerability (CVE-2025-11371) in Gladinet CentreStack and Triofox products, which allows a local attacker to access system files without authentication. [...]