MUST READ

CVE-2025-5947: WordPress Plugin flaw lets hackers access Admin accounts

 | 

Threat actors steal firewall configs, impacting all SonicWall Cloud Backup users

 | 

Discord denies massive breach, confirms limited exposure of 70K ID photos

 | 

Qilin ransomware claimed responsibility for the attack on the beer giant Asahi

 | 

DragonForce, LockBit, and Qilin, a new triad aims to dominate the ransomware landscape

 | 

DraftKings thwarts credential stuffing attack, but urges password reset and MFA

 | 

Redis patches 13-Year-Old Lua flaw enabling Remote Code Execution

 | 

U.S. CISA adds Synacor Zimbra Collaboration Suite (ZCS) flaw to its Known Exploited Vulnerabilities catalog

 | 

GoAnywhere MFT zero-day used by Storm-1175 in Medusa ransomware campaigns

 | 

CrowdStrike ties Oracle EBS RCE (CVE-2025-61882) to Cl0p attacks began Aug 9, 2025

 | 

Discord discloses third-party breach affecting customer support data

 | 

Oracle patches critical E-Business Suite flaw exploited by Cl0p hackers

 | 

LinkedIn sues ProAPIs for $15K/Month LinkedIn data scraping scheme

 | 

Zimbra users targeted in zero-day exploit using iCalendar attachments

 | 

Reading the ENISA Threat Landscape 2025 report

 | 

Ghost in the Cloud: Weaponizing AWS X-Ray for Command & Control

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 65

 | 

Security Affairs newsletter Round 544 by Pierluigi Paganini ā€“ INTERNATIONAL EDITION

 | 

GreyNoise detects 500% surge in scans targeting Palo Alto Networks portals

 | 

U.S. CISA adds Smartbedded Meteobridge, Samsung, Juniper ScreenOS, Jenkins, and GNU Bash flaws to its Known Exploited Vulnerabilities catalog

 | 

Fastjson library

Pierluigi Paganini June 16, 2022
Researchers disclosed a remote code execution flaw in Fastjson Library

Researchers disclosed a remote code execution vulnerability, tracked asĀ CVE-2022-25845, in the popularĀ Fastjson library. Cybersecurity researchers from JFrog disclosed details of a now patched high-severity security vulnerability in the popularĀ Fastjson libraryĀ that could be potentially exploited to achieve remote code execution. FastjsonĀ is a Java library that can be used to convert Java Objects into their JSON representation. […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

CVE-2025-5947: WordPress Plugin flaw lets hackers access Admin accounts

Hacking / October 09, 2025

Threat actors steal firewall configs, impacting all SonicWall Cloud Backup users

Security / October 09, 2025

Discord denies massive breach, confirms limited exposure of 70K ID photos

Cyber Crime / October 09, 2025

Qilin ransomware claimed responsibility for the attack on the beer giant Asahi

Cyber Crime / October 08, 2025

DragonForce, LockBit, and Qilin, a new triad aims to dominate the ransomware landscape

Cyber Crime / October 08, 2025