%term

Critical Vulnerability Alert: CVE-2025-10035 in GoAnywhere MFT

Sep 29, 2025 By Emma Stevens In BitSight

A critical security vulnerability (CVE-2025-10035) has been identified in GoAnywhere MFT, a widely used file transfer solution developed by Fortra. This software is commonly deployed to securely transfer sensitive data such as financial records, HR files, legal documents, and personally identifiable information (PII). Currently, CVE-2025-10035 is rated at a 10.0 (critical) on the CVSS scale and a 9.23 out of 10 on Bitsight’s Dynamic Vulnerability Exploit (DVE) scale.

Read Post

BitSight

Read more about Critical Vulnerability Alert: CVE-2025-10035 in GoAnywhere MFT

Top 5 Cybersecurity Risks in ERP Systems and How to Prevent Them

Sep 29, 2025 By SecuritySenses In SecuritySenses

Modern businesses are built on Enterprise Resource Planning (ERP) systems. From finance to supply chain, they run everything in one place. Many of them can even connect to cloud systems, mobile apps, and IoT devices. But where they are most powerful, they are also most vulnerable. Cybercriminals know that ERP systems are treasure troves of data. So if an attack happens, it can lead to significant data theft. Not only that, it can also delay payroll, damage production lines, and stop operations.

Read Post

SecuritySenses

Read more about Top 5 Cybersecurity Risks in ERP Systems and How to Prevent Them

CVE-2025-20333: Authenticated RCE in Cisco ASA / FTD VPN Web Server

Sep 26, 2025 By Tal Zamir In IONIX

A high-severity vulnerability (CVSS 9.9) has been disclosed in the VPN web server component of Cisco Secure Firewall ASA and FTD software. An authenticated attacker (i.e. one possessing valid VPN credentials) can send specially crafted HTTP(S) requests that bypass input validation and lead to remote code execution as root. This means full device compromise is possible.

Read Post

IONIX

Read more about CVE-2025-20333: Authenticated RCE in Cisco ASA / FTD VPN Web Server

OWASP AppSecDays France 2025: Learning To Defend The Global Supply Chain Together

Sep 26, 2025 By Dwayne McDaniel In GitGuardian

OWASP AppSecDays France 2025 explored supply chain trust, CI/CD as the new perimeter and passkeys, showing how shared guardrails make secure delivery possible.

Read Post

GitGuardian

Read more about OWASP AppSecDays France 2025: Learning To Defend The Global Supply Chain Together

REDCap: Multiple Cross-Site Scripting (XSS) Vulnerabilities

Sep 26, 2025 By Harold Zang In Trustwave

REDCap, developed by Vanderbilt University, is a secure platform designed for data collection in research studies and operations. REDCap is popular within scientific institutions and universities that require strict compliance with government regulations and data privacy laws when conducting data collection for research purposes. It is particularly useful for managing studies that often contain sensitive or private information.

Read Post

Trustwave

Read more about REDCap: Multiple Cross-Site Scripting (XSS) Vulnerabilities

Smash and Grab: Aggressive Akira Campaign Targets SonicWall VPNs, Deploys Ransomware in an Hour or Less

Sep 26, 2025 By Arctic Wolf Labs In Arctic Wolf

In late July 2025, Arctic Wolf Labs began observing a surge of intrusions involving suspicious SonicWall SSL VPN activity. Malicious logins were followed within minutes by port scanning, Impacket SMB activity, and rapid deployment of Akira ransomware. Victims spanned across multiple sectors and organization sizes, suggesting opportunistic mass exploitation. This campaign has recently escalated, with new infrastructure linked to it observed as late as September 20, 2025.

Read Post

Arctic Wolf

Read more about Smash and Grab: Aggressive Akira Campaign Targets SonicWall VPNs, Deploys Ransomware in an Hour or Less

Cisco Patches ASA, FTD, and IOS Vulnerabilities, Including Critical and Exploited Flaws

Sep 26, 2025 By Andres Ramos In Arctic Wolf

On September 25, 2025, Cisco released fixes for two vulnerabilities in Adaptive Security Appliance (ASA) and Firewall Threat Defense (FTD) that are currently being actively exploited by a sophisticated threat actor. The US Cybersecurity and Infrastructure Security Agency (CISA) issued Emergency Directive 25-03 requiring Federal Civilian Executive Branch (FCEB) agencies to patch these vulnerabilities by 12 PM EDT on September 26.

Read Post

Arctic Wolf

Read more about Cisco Patches ASA, FTD, and IOS Vulnerabilities, Including Critical and Exploited Flaws

Carding ecosystem: The fall of traditional financial cybercrime

Sep 26, 2025 By Marcelo Ruano In Outpost 24

Carding is a type of cybercrime where attackers steal or illegally buy credit card information and use it to make unauthorized transactions. It often involves testing stolen card numbers with small purchases before making larger fraudulent charges. Criminals typically exchange or sell these stolen details on underground forums or dark web marketplaces. Outpost24’s Threat Intelligence team, KrakenLabs, carried out a previous public analysis of the underground card fraud ecosystem in 2022.

Read Post

Outpost 24

Read more about Carding ecosystem: The fall of traditional financial cybercrime

Cisco CVEs: What You Need to Know About These Zero-Day Vulnerabilities

Sep 26, 2025 By Tanium In Tanium

Details from Tanium’s Guardian research team about CVE-2025-20333, CVE-2025-20362, and CVE-2025-20363—and emerging malware campaigns RAYINITIATOR & LINE VIPER.

Read Post

Tanium

Read more about Cisco CVEs: What You Need to Know About These Zero-Day Vulnerabilities

Malicious MCP Server on npm postmark-mcp Harvests Emails

Sep 25, 2025 By Liran Tal In Snyk

On September 25, 2025, the npm package postmark-mcp, an MCP (Model Context Protocol) server intended to let AI assistants send emails via Postmark, was reportedly modified to secretly exfiltrate email contents by adding a blind-copy (BCC) to an external domain. Current analysis suggests the behavior began around 1.0.16 and persisted in later versions.

Read Post