CISA has added CVE-2025-47812 to its Known Exploited Vulnerabilities Catalog. This vulnerability in Wing FTP Server is a frequent attack vector for cyber actors, posing significant risks. Federal agencies must remediate such vulnerabilities by the deadline to protect their networks from active threats.

Since late 2024, Unit 42 researchers have been tracking CL-STA-1020, a cluster of suspicious activity targeting Southeast Asian governments. The highlight? A sneaky Windows backdoor named HazyBeacon, using AWS Lambda URLs as its covert command and control channel. Forget espionage movies—this cyber drama is streaming live!

Join Johannes Ullrich as he tackles the latest cyber threats with a green threat level. Curious about digital self-defense? Enroll in his Las Vegas class on Application Security: Securing Web Apps, APIs, and Microservices. It’s more exciting than a hacker at a firewall convention!

Researchers have discovered a new variant of the Interlock ransomware group’s remote access trojan, shifting from JavaScript to PHP. This crafty malware campaign starts with a “Verify you are human” captcha, only to unleash Interlock RAT upon unsuspecting victims. It’s the digital equivalent of a surprise party you never wanted to attend!

Curious about what’s lurking in the world of newly registered domains? Our feed captures about 250,000 new domains every day, and we score them to spot potentially malicious ones. Think of it as speed dating, but for domain names—minus the awkward small talk. Dive into the bizarre realm of domain name oddities today!

OpenBlow users, brace yourselves! Missing critical security headers in OpenBlow software expose users to client-side vulnerabilities like XSS and clickjacking. With an alarming CVSS score of 8.2, it’s like leaving your front door wide open during a raccoon rave. Time to batten down the hatches and secure those headers!

The vulnerability in SAP NetWeaver S/4HANA allows users to execute arbitrary code, thanks to a function module called WRITE_AND_CALL_DBPROG. While SAP doesn’t classify it as a threat, it’s like leaving the keys to the kingdom in the wrong hands. Time to double-check who’s on your guest list!

In the ongoing battle against cyber threats, the SLOW#TEMPEST campaign proves malware authors have taken a page from “Dancing with the Stars,” using dynamic jumps and obfuscated function calls to keep analysts guessing. Understanding malware obfuscation techniques is key to keeping security practitioners one step ahead in this cha-cha with cybercriminals.

CISA has added CVE-2025-5777, a Citrix NetScaler ADC and Gateway vulnerability, to its KEV Catalog. This isn’t just another excuse for a cyber actor to crash your digital party; it’s a significant risk for federal networks. So, federal agencies, fix it before it becomes the cyber equivalent of an open bar at your data breach.

View CSAF: A vulnerability in the End-of-Train and Head-of-Train remote linking protocol could let attackers make trains stop suddenly. While the Association of American Railroads is on the case, users should avoid network exposure and use VPNs for remote access. Remember, no one wants a train to stop on a dime—unless you’re on a roller…

If your password is “TRUE,” it might be time to panic. The RevPi Webstatus vulnerability, View CSAF, could let hackers waltz in without a proper invite. To avoid an unauthorized guest list, update to Version 2.4.6 and ensure your network isn’t hosting an open house!

Attention all tech enthusiasts: the Advantech iView has vulnerabilities that could make your worst tech nightmares come true. With remote code execution and SQL injection on the menu, this is not an all-you-can-eat buffet you’d want to attend. Update to version 5.7.05 build 7057 before your data gets served up on a platter!

Attention, DTM Soft users! If you’re feeling adventurous, try deserializing untrusted data—just kidding, don’t do that. This vulnerability could let attackers encrypt your files faster than you can say “What happened?” Update your software pronto! View CSAF details and stay safe from cyber shenanigans.

Siemens product vulnerabilities are going on a solo tour! CISA will stop updating ICS security advisories for Siemens products. To catch the latest, check Siemens’ ProductCERT Security Advisories. Remember, even vulnerabilities need a little independence now and then!

CISA will stop updating ICS security advisories for Siemens products after January 10, 2023. Siemens ProductCERT Security Advisories will have the latest intel. The vulnerability could allow attackers to cause denial-of-service conditions. Siemens recommends updates and protective measures, and CISA urges defensive actions and proactive cybersecurity strategies.

Siemens SIMATIC CN 4100 devices are getting a security makeover! CISA stops updates, leaving Siemens to step up with new ProductCERT advisories. Attackers could cause denial-of-service if users don’t update to V4.0 or later. So, secure your networks like they’re made of gold and keep those hackers at bay!

Siemens TIA Administrator is juggling vulnerabilities like a circus act! Users should update to version 3.0.6 to avoid the digital equivalent of stepping on a banana peel. With improper cryptographic checks and access controls, attackers might just crash the party and execute arbitrary code. Stay safe and keep that software updated!

Siemens’ Solid Edge SE2025 has vulnerabilities that could crash your software party like an unwanted guest. The affected software’s vulnerabilities include out-of-bounds read and stack-based buffer overflow. Remember, don’t open untrusted PAR and CFG files unless you want your computer to star in a disaster movie. Stay updated, stay safe!

Siemens SINEC NMS is having a bad hair day with vulnerabilities like SQL injection and path traversal. CISA won’t update their advisories post-January 2023, so check Siemens’ ProductCERT for the latest scoop. In the meantime, update to V4.0 and keep hackers at bay by following Siemens’ security guidelines.

CISA dropped thirteen ICS advisories like they’re hot, serving up the latest scoop on security issues, vulnerabilities, and exploits. It’s like a techie soap opera where industrial systems need saving. Tune in for the drama!