Threat Newsletter Week 34
Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks Apple has released security updates to address a security flaw impacting iOS, …
Threat Newsletter Week 32-33
Microsoft August 2025 Patch Tuesday Fixes Kerberos Zero-Day Among 111 Total New Flaws Microsoft on Tuesday rolled out fixes for a massive set of 111 …
Threat Newsletter Week 30-31
Apple Patches Safari Vulnerability Also Exploited as Zero-Day in Google Chrome Apple on Tuesday released security updates for its entire software portfolio, including a fix …
Threat Newsletter Week 28-29
Max severity Cisco ISE bug allows pre-auth command execution, patch now A critical vulnerability (CVE-2025-20337) in Cisco’s Identity Services Engine (ISE) could be exploited to …
Threat Newsletter Week 26-27
Critical Cisco Vulnerability in Unified CM Grants Root Access via Static Credentials Cisco has released security updates to address a maximum-severity security flaw in Unified …
Threat Newsletter Week 24-25
Microsoft Patches 67 Vulnerabilities Including WEBDAV Zero-Day Exploited in the Wild Microsoft has released patches to fix 67 security flaws, including one zero-day bug in …
Threat Newsletter Week 22-23
Critical Cisco ISE Auth Bypass Flaw Impacts Cloud Deployments on AWS, Azure, and OCI Cisco has released security patches to address a critical security flaw …
Threat Newsletter Week 20-21
Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise A privilege escalation flaw has been demonstrated in Windows Server 2025 that makes it possible …
Threat Newsletter Week 18-19
Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell A China-linked unnamed threat actor dubbed Chaya_004 has been observed exploiting a recently disclosed security flaw in …
Threat Newsletter Week 16-17
Released: MITRE ATT&CK v17.0, now with ESXi attack TTPs MITRE has released the latest version of its ATT&CK framework, which now also includes a new …