Tag Archives: Exploited

Google has released security patches for six vulnerabilities in Android’s August 2025 security update, including two Qualcomm flaws exploited in targeted attacks. The two security bugs, tracked as CVE-2025-21479 and CVE-2025-27038, were reported through the Google Android Security team in late January 2025. The first is a Graphics framework incorrect authorization weakness that can lead to memory corruption due to …

Security researcher Bobby Gould has published a blog post demonstrating a complete exploit chain for CVE-2025-20281, an unauthenticated remote code execution vulnerability in Cisco Identity Services Engine (ISE). The critical vulnerability was first disclosed on June 25, 2025, with Cisco warning that it impacts ISE and ISE-PIC versions 3.3 and 3.4, allowing unauthenticated, remote attackers to upload arbitrary files to …

Microsoft has released emergency SharePoint security updates for two zero-day vulnerabilities tracked as CVE-2025-53770 and CVE-2025-53771 that have compromised services worldwide in “ToolShell” attacks. In May, during the Berlin Pwn2Own hacking contest, researchers exploited a zero-day vulnerability chain called “ToolShell,” which enabled them to achieve remote code execution in Microsoft SharePoint. These flaws were fixed as part of the July Patch …

Microsoft Releases Urgent Patch for SharePoint RCE Flaw Exploited in Ongoing Cyber Attacks  The Hacker News Global hack on Microsoft product hits U.S., state agencies, researchers say  The Washington Post Microsoft alerts businesses, governments to server software attack  Reuters Microsoft Server Software Comes Under Widespread Cyberattack (MSFT)  Bloomberg.com Microsoft SharePoint servers under attack via zero-day vulnerability with no patch (CVE-2025-53770)  Help Net Security Source link

Critical Unpatched SharePoint Zero-Day Actively Exploited, Breaches 75+ Global Organizations  The Hacker NewsView Full Coverage on Google News Source link