Threat Newsletter Week 37-38
Microsoft Fixes 80 Flaws — Including SMB PrivEsc and Azure CVSS 10.0 Bugs Microsoft on Tuesday addressed a set of 80 security flaws in its …
Threat Newsletter Week 35-36
CISA Flags TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377 as Actively Exploited The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws …
Threat Newsletter Week 34
Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks Apple has released security updates to address a security flaw impacting iOS, …
Threat Newsletter Week 32-33
Microsoft August 2025 Patch Tuesday Fixes Kerberos Zero-Day Among 111 Total New Flaws Microsoft on Tuesday rolled out fixes for a massive set of 111 …
Threat Newsletter Week 30-31
Apple Patches Safari Vulnerability Also Exploited as Zero-Day in Google Chrome Apple on Tuesday released security updates for its entire software portfolio, including a fix …
Threat Newsletter Week 28-29
Max severity Cisco ISE bug allows pre-auth command execution, patch now A critical vulnerability (CVE-2025-20337) in Cisco’s Identity Services Engine (ISE) could be exploited to …
Threat Newsletter Week 26-27
Critical Cisco Vulnerability in Unified CM Grants Root Access via Static Credentials Cisco has released security updates to address a maximum-severity security flaw in Unified …
Threat Newsletter Week 24-25
Microsoft Patches 67 Vulnerabilities Including WEBDAV Zero-Day Exploited in the Wild Microsoft has released patches to fix 67 security flaws, including one zero-day bug in …
Threat Newsletter Week 22-23
Critical Cisco ISE Auth Bypass Flaw Impacts Cloud Deployments on AWS, Azure, and OCI Cisco has released security patches to address a critical security flaw …
Threat Newsletter Week 20-21
Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise A privilege escalation flaw has been demonstrated in Windows Server 2025 that makes it possible …