SugarCRM 14.0.0 has a vulnerability that allows SSRF and code injection due to poorly sanitized GET parameters. This could let attackers unleash their inner hacker by executing arbitrary LESS directives. Remember, updating your software may prevent your CRM from becoming a hacker’s playground.

Langflow 1.2.x has a bit of a problem—it opens the door for remote code execution without even asking for ID. Thanks to a vulnerable endpoint, attackers can run arbitrary commands like they’re running their own errands. So, if you’re using Langflow, it’s time to lock the door before the wrong guests drop by!

TOTOLINK N300RB 8.54 has a “surprise” feature: a static secret lets authenticated attackers execute OS commands with root privileges. Who knew debugging could be so powerful?

Microsoft is brokering a file system in Windows 11 Version 22H2 with an exploit only a tech wizard could love. CVE-2025-49677 lets you run wild with SYSTEM-level privileges, and it’s as easy as a Python script, a scheduled task, and a dash of admin rights. Who knew getting SYSTEM> could be this entertaining?

Explore the API for developers by SANS Internet Storm Center and unleash your inner tech wizard. This API is perfect for those who find joy in making computers dance and sing to their code. So, grab your keyboard and let the digital symphony begin!

Oracle’s July 2025 Critical Patch Update is here with 309 security patches, proving once again that even technology requires a regular dose of TLC. Remember, skipping updates is like leaving your door open—inviting unwanted guests. Stay patched, stay secure, and keep those cyber gremlins at bay!

View CSAF: Liteon EV chargers are storing passwords in plain sight, practically begging for a security breach. With a CVSS v4 score of 8.7, this vulnerability could spark joy for hackers worldwide. LITEON has released firmware updates, so don’t be an easy target—upgrade before your charger becomes the neighborhood hotspot for cyber mischief.

View CSAF: ABB’s RMC-100 is vulnerable to attacks thanks to a hard-coded cryptographic key and stack-based buffer overflow. While it’s not intended for internet fame, hackers could still crash the party. Solution? Keep the REST interface off unless you want your MQTT data to be the talk of the cyber town!

View CSAF: Hitachi Energy’s Asset Suite is more vulnerable than a superhero with a kryptonite allergy. With remote exploits and password mishaps, it’s like the software left its front door wide open. Don’t worry, Hitachi’s got updates and mitigations ready, but until then, you might want to keep your network on a strict ‘no strangers’…

CISA dropped six ICS advisories on July 15, 2025, like a surprise album release. Dive in for the latest on security issues, vulnerabilities, and exploits. Tech details and mitigations included—no VIP pass required!

Ever wondered how sneaky malware hides in plain sight? Meet Alternate Data Streams, NTFS’s not-so-secret weapon. It’s like a magician’s pocket – storing extra data without leaving a trace. Just remember, if your computer starts acting like it’s got a mind of its own, maybe it’s time to check for those pesky ADS.

The Internet Storm Center is your go-to for all things cybersecurity, with the threat level currently at green. Join us for our upcoming class on application security in Las Vegas this September, and don’t forget to check out our latest tools and resources. Developers, we’ve got an API for you!

Honeypot logs have skyrocketed recently, with some days hitting a jaw-dropping 58 GB! This spike in web honeypot logs isn’t just a blip; it’s become the new normal. So, if you’re managing logs, brace yourself for a data deluge and consider compression—your storage space will thank you!

CISA has added CVE-2025-47812 to its Known Exploited Vulnerabilities Catalog. This vulnerability in Wing FTP Server is a frequent attack vector for cyber actors, posing significant risks. Federal agencies must remediate such vulnerabilities by the deadline to protect their networks from active threats.

Since late 2024, Unit 42 researchers have been tracking CL-STA-1020, a cluster of suspicious activity targeting Southeast Asian governments. The highlight? A sneaky Windows backdoor named HazyBeacon, using AWS Lambda URLs as its covert command and control channel. Forget espionage movies—this cyber drama is streaming live!

Join Johannes Ullrich as he tackles the latest cyber threats with a green threat level. Curious about digital self-defense? Enroll in his Las Vegas class on Application Security: Securing Web Apps, APIs, and Microservices. It’s more exciting than a hacker at a firewall convention!

Researchers have discovered a new variant of the Interlock ransomware group’s remote access trojan, shifting from JavaScript to PHP. This crafty malware campaign starts with a “Verify you are human” captcha, only to unleash Interlock RAT upon unsuspecting victims. It’s the digital equivalent of a surprise party you never wanted to attend!

Curious about what’s lurking in the world of newly registered domains? Our feed captures about 250,000 new domains every day, and we score them to spot potentially malicious ones. Think of it as speed dating, but for domain names—minus the awkward small talk. Dive into the bizarre realm of domain name oddities today!

OpenBlow users, brace yourselves! Missing critical security headers in OpenBlow software expose users to client-side vulnerabilities like XSS and clickjacking. With an alarming CVSS score of 8.2, it’s like leaving your front door wide open during a raccoon rave. Time to batten down the hatches and secure those headers!

The vulnerability in SAP NetWeaver S/4HANA allows users to execute arbitrary code, thanks to a function module called WRITE_AND_CALL_DBPROG. While SAP doesn’t classify it as a threat, it’s like leaving the keys to the kingdom in the wrong hands. Time to double-check who’s on your guest list!