14 – 20 July 2025 This week our focus moved to a vulnerability in Google’s browser, tracked as CVE-2025-6558, because it possibly has been exploited in the wild. This flaw scored 8.8 CVSS score and allow a potential remote attacker to escape the sandbox environment …
Critical GPU Vulnerabilities, SonicWall Exploits, and ICS Alerts In this edition of Cyber (In)Securities, we explore urgent developments in global cybersecurity. Nvidia’s recent GPU vulnerabilities expose critical risks in modern compute architecture, while attackers exploit fully patched SonicWall VPNs and abuse Microsoft Teams to deploy …
07 – 13 July 2025 OT environments power things that keep our world turning, from factories to critical infrastructure like power plants. As one can imagine, the security of such systems is paramount. However, they pose very different challenges from traditional IT networks. As an …
30 June – 06 July 2025 Our CVE of the Week post brings you another fresh attack on a network device, but this time it affects owners of a D-Link DIR-816 wireless router, which is used in small home networks. The router provides dual-band AC …
23 – 29 June 2025 The blast radius of a compromised security solution is always massive — just like the Cisco ISE API vulnerabilities featured in this post from our CVE of the Week series. Cisco’s ISE (Identity Services Engine) is the Network Access Control …
16 – 22 June 2025 It’s Friday again, which for some people means throwing a party to let the stress out after a long week at work. Not for engineers responsible for securing SUSE Linux systems, though. SUSE is a distribution loved by many desktop …
09 – 15 June 2025 After our last CVE of the Week post exploring a critical vulnerability in the open source landscape, we are back again in the Microsoft ecosystem, as it’s just past Patch Tuesday, which keeps on giving (and more importantly, fixing) weaknesses …
02 – 08 June 2025 Open-source enthusiast sysadmins might be familiar with Roundcube, one of the most popular webmail clients deployed, to be exact, Shodan currently lists over 160,000 publicly available instances. Unfortunately, it has now become the subject of our regular CVE of the …
26 May – 01 June 2025 Our new CVE of the Week is high severity vulnerability, CVE-2025-34027, has been identified and is making waves across the cybersecurity landscape. It affects Versa Concerto, an orchestrator and interface to configure and monitor Versa OS devices in Secure …
19 – 15 May 2025 Multiple high-severity vulnerabilities were responsibly disclosed in VCF by Gustavo Bonito of the NATO Cyber Security Centre. From among these, our #CVEOfTheWeek is CVE-2025-41229. This is a Directory Traversal vulnerability, which might allow a malicious actor with network access to …