Content Paint
Search
Sign in
Membership

vulnerabilities

 |  Security  | May 07, 2025
Hacker used DeepSeek to create LangFlow exploit
Hacker used DeepSeek to create LangFlow exploit

Over 500 instances are publicly exposed and attacks are happening in the wild

vulnerabilities  | Apr 28, 2025
1,100 systems popped as CVSS 10 SAP NetWeaver bug exploited
1,100 systems popped as CVSS 10 SAP NetWeaver bug exploited

Victims "predominantly belong to large enterprises and critical infrastructure operators"

 |  News  | Apr 17, 2025
CVSS 10 bug allows pre-auth access to Erlang/OTP SSH servers, host devices
A sign reading "Restricted Area. Authorized Personnel Only" - the Erlang/OTP bug allows attackers unauthorised access

Users advised to immediately update or restrict SSH server access

vulnerabilities  | Apr 11, 2025
Android RAT sneaks onto devices through fake Google Play downloads
A rat pokes its head through a cardboard box. the SpyNote malware is described as an AndroidOS RAT

China nexus group suspected as the attackers behind attacks

News  | Mar 28, 2025
Beware the phishing Morphing Meerkat, it may be posing as your email provider
A meerkat sat on the ground. The Morphing Meerkat phishing platform uses fake, personalised email login pages to trick users

Phishing kits going to great lengths to personalise attacks

 |  Software  | Mar 21, 2025
A new Veeam backup vulnerability? Let's patch with a similar fix as before
A person applies two plasters to an elbow. Veamm was criticised by security researchers for the patch used for its backup vulnerabilities

A CVSS rated 9.9 vulnerability needs an urgent fix - but is it sufficient?

vmware  | Mar 04, 2025
VMware: Critical “VM escape” zero days exploited in wild
VMware: Critical “VM escape” zero days exploited in wild

"There are no other meaningful workarounds that do not involve updating and restarting..."

Security  | Feb 19, 2025
Critical SonicWall SSLVPN authentication bypass exploited in the wild
Critical SonicWall SSLVPN authentication bypass exploited in the wild

Bug lets attackers to bypass even accounts with multi-factor authentication enabled.

Patch Tuesday  | Feb 11, 2025
Patch Tuesday: A “wormable” LDAP bug and two EOP zero days fixed
Patch Tuesday: A “wormable” LDAP bug and two EOP zero days fixed

Lighter than last month, mercifully, but still some urgent fixes.

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2025 The Stack
©  2025 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.