Fosstodon

BeyondMachines :verified:Hackers breach Salesforce instances of major corporations through voice phishingShinyHunters gang is conducting a sophisticated voice phishing campaign targeting Salesforce CRM instances and has breached major corporations including Cisco, Google, Chanel, Pandora, KLM, and Air France. The attack is tricking employees into authorizing malicious OAuth applications.**Always verify any urgent call from "IT" or anyone representing authority. The urgent call technique paired with pressure tactics and abuse of the ability of most users to grant access to apps is extremely dangerous.** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/hackers-breach-salesforce-instances-of-major-corporations-through-voice-phishing-x-5-x-3-m/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/hackers-breach-salesforce-instances-of-major-corporations-through-voice-phishing-x-5-x-3-m/gD2P6Ple2L</a>

BeyondMachines :verified:SonicWall Gen 7 firewalls targeted with unknown SSL VPN Zero-Day vulnerabilityCybersecurity firms are warning about a suspected zero-day vulnerability in SonicWall Gen 7 firewalls' SSL VPN implementations that allows the Akira ransomware group to bypass authentication (including MFA) on fully patched devices and complete attacks in as little as 1.5-2 hours.**If you have SonicWall Gen 7 firewalls with SSL VPN enabled, be aware that even fully patched devices are under attack. Immediately disable the SSL VPN service until SonicWall releases a patch for this zero-day vulnerability. If you absolutely must keep VPN access, restrict SSL VPN connections to only trusted IP addresses and monitor closely for any suspicious activity.** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/sonicwall-gen-7-firewalls-targeted-with-unknown-ssl-vpn-zero-day-vulnerability-b-z-0-e-2/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/sonicwall-gen-7-firewalls-targeted-with-unknown-ssl-vpn-zero-day-vulnerability-b-z-0-e-2/gD2P6Ple2L</a>

BeyondMachines :verified:Mozilla warns of active phishing campaign targeting Firefox Add-on developersMozilla is warning about an active phishing campaign targeting Firefox extension developers through fraudulent emails that impersonate the AMO team and use fake domains (like "mozila" instead of "mozilla") to steal developer credentials. The attackers' goal is to compromise legitimate developer accounts to distribute malicious extensions through Mozilla's trusted platform.**If you're a Firefox extension developer, be aware that you are targeted. Don't click links in emails claiming to be from Mozilla about account updates - these are phishing attempts using fake domains like "mozila" instead of "mozilla". Always navigate directly to addons.mozilla.org or mozilla.org instead of following email links.** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/mozilla-warns-of-active-phishing-campaign-targeting-firefox-add-on-developers-b-h-c-p-c/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/mozilla-warns-of-active-phishing-campaign-targeting-firefox-add-on-developers-b-h-c-p-c/gD2P6Ple2L</a>

BeyondMachines :verified:CISA warns of active attacks on Signal clone TeleMessageCISA has issued a warning about two actively exploited vulnerabilities in TeleMessage TM SGNL, a Signal clone used by national security staffers and government officials, including a Spring Boot Actuator misconfiguration (CVE-2025-48927) that exposes memory dumps and a local access vulnerability (CVE-2025-48928) enabling password extraction.**If you're using TeleMessage TM SGNL, start patching it today, because it's being actively exploited. Alternatively, stop using the software entirely. Switch back to standard Signal or another approved properly encrypted messaging app since TM SGNL has already been breached and continues to be attacked.** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/cisa-warns-of-active-attacks-on-signal-clone-telemessage-6-j-0-0-k/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/cisa-warns-of-active-attacks-on-signal-clone-telemessage-6-j-0-0-k/gD2P6Ple2L</a>

BeyondMachines :verified:Citrix releases emergency patches for actively exploited vulnerability in NetScaler ProductsCitrix has patched a critical actively exploited vulnerability (CVE-2025-6543) in NetScaler ADC and Gateway products that security experts suspect enables code execution despite being characterized as denial-of-service. Citrix has also patched two other critical flaws including one compared to the infamous 2023 CitrixBleed vulnerability. Organizations are urged to immediately patch affected systems and terminate all active sessions.**This is now important and URGENT. Your Citrix NetScaler ADC or Gateway, exposed on the internet, they are actively attacked and exploited. Also, there seems to be some indisclosed severity in the three latest critical flaws and possibility of a repeat of the CitrixBleed incident from 2023. Immediately update to the latest patched versions (14.1-47.46, 13.1-59.19, or 13.1-37.236-FIPS). After patching, you must also terminate all active ICA and PCoIP sessions to prevent attackers from using stolen session tokens. If you have end-of-life devices, shut them down NOW - they will be hacked.** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/citrix-releases-emergency-patches-for-actively-exploited-vulnerability-in-netscaler-products-m-f-5-f-y/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/citrix-releases-emergency-patches-for-actively-exploited-vulnerability-in-netscaler-products-m-f-5-f-y/gD2P6Ple2L</a>

BeyondMachines :verified:NPM supply chain attack compromises 17 popular React Native packagesA supply chain attack compromised 17 widely-used GlueStack NPM packages under @react-native-aria between June 6-7, 2025, affecting packages with over a million weekly downloads by injecting heavily obfuscated remote access trojan (RAT) malware through compromised automation tokens lacking two-factor authentication.**If you're using any GlueStack @react-native-aria packages, check your package.json files and update to the latest safe versions. Then scan your systems for signs of compromise and review firewall logs for any suspicious outbound connections to unknown command-and-control servers. If you are a code publisher, make sure all your NPM publishing tokens are secure and have MFA enforced.** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/npm-supply-chain-attack-compromises-17-popular-react-native-packages-d-0-p-1-w/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/npm-supply-chain-attack-compromises-17-popular-react-native-packages-d-0-p-1-w/gD2P6Ple2L</a>

BeyondMachines :verified:Critical Roundcube Webmail vulnerability exploited within days of disclosureThe critical decade-old Roundcube vulnerability (CVE-2025-49113, CVSS 9.9) is now being actively exploited and dubbed "email armageddon". Cybercriminals are selling working exploits on underground forums just 48 hours after patches were released. The vulnerability affects an estimated 53 million hosts globally including major hosting providers like GoDaddy and Hostinger.**If you still didn't patch your Roundcube webmail installations, DO IT NOW! The critical flaw is already weaponized and attacks have started. And with leaked passwords, be certain that you will be hacked.** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/critical-roundcube-webmail-vulnerability-exploited-within-days-of-disclosure-5-g-7-8-1/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/critical-roundcube-webmail-vulnerability-exploited-within-days-of-disclosure-5-g-7-8-1/gD2P6Ple2L</a>

BeyondMachines :verified:Critical Fortinet vulnerability actively exploitedFortinet has patched a critical zero-day vulnerability (CVE-2025-32756, CVSS 9.6) that allows unauthenticated remote code execution and is being actively exploited against FortiVoice systems. The attackers are abusing it to deploy backdoors, capture credentials, and erase logs. The flaw affects multiple products including FortiMail, FortiNDR, FortiRecorder, and FortiCamera.**If you are using Fortinet, patch all affected Fortinet products because there is an actively exploited flaw. As a mitigation measure make sure the HTTP/HTTPS is isolated from the internet or even disable it.** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/critical-fortinet-vulnerability-actively-exploited-z-e-f-d-s/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/critical-fortinet-vulnerability-actively-exploited-z-e-f-d-s/gD2P6Ple2L</a>

BeyondMachines :verified:Ivanti reports actively exploited EPMM flaws, urges immediate patchingIvanti has issued an urgent security advisory warning that attackers are actively chaining two vulnerabilities (CVE-2025-4427 and CVE-2025-4428) in Endpoint Manager Mobile's on-premises deployments to gain unauthorized access and execute malicious code. Some customers have already been compromised, urgent patching is advised.**If you are using Ivanti Endpoint Manager Mobile on premises, this is an URGENT advisory. Update your EPMM because it's already actively hacked, using flaws that are not even deemed critical. Just another reminder to always keep up with patches.** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/ivanti-reports-actively-exploited-epmm-flaws-urges-immediate-patching-4-y-1-3-y/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/ivanti-reports-actively-exploited-epmm-flaws-urges-immediate-patching-4-y-1-3-y/gD2P6Ple2L</a>

BeyondMachines :verified:"Bring Your Own Installer" EDR bypass technique exploited on SentinelOneThe "Bring Your Own Installer" (BYOI) attack technique discovered by Aon's Stroz Friedberg exploits a vulnerability in SentinelOne's upgrade/downgrade process, allowing threat actors with local administrative access to bypass the EDR's anti-tamper protection by terminating the installation process during a 55-second window when no SentinelOne processes are active.**If you are using SentinelOne EDR, enabel and enforce "Online authorization" feature immediately in the Sentinels Policy to prevent the "Bring Your Own Installer" attack.** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/bring-your-own-installer-new-b-ransomware-b-attack-on-sentinelone-the420-in-o-e-t-k-g/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/bring-your-own-installer-new-b-ransomware-b-attack-on-sentinelone-the420-in-o-e-t-k-g/gD2P6Ple2L</a>

BeyondMachines :verified:Supply chain attack compromises Magento E-commerce extensionsA coordinated supply chain attack targeting multiple Magento extension vendors has compromised between 500 and 1,000 e-commerce stores worldwide. Backdoors were discovered in 21 different extensions from three primary vendors (Tigren, Meetanshi, and MGS). The backdoors were initially injected as far back as 2019 remained dormant until being activated in April 2025.**If you're using Magento e-commerce and have extensions from Tigren, Meetanshi, MGS, or Weltpixel, immediately review the servers for backdoors in License.php or LicenseApi.php files and remove them. Investigate the depth of breach and any customers of data compromised and restore from clean backups. You may have customers compromised as well.** <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/supply-chain-attack-compromises-magento-e-commerce-extensions-6-1-j-i-j/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/supply-chain-attack-compromises-magento-e-commerce-extensions-6-1-j-i-j/gD2P6Ple2L</a>

BeyondMachines :verified:Microsoft NTLM hash disclosure vulnerability now actively exploited <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/microsoft-ntlm-hash-disclosure-vulnerability-now-actively-exploited-g-9-3-z-7/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/microsoft-ntlm-hash-disclosure-vulnerability-now-actively-exploited-g-9-3-z-7/gD2P6Ple2L</a>

BeyondMachines :verified:Supply-Chain attack compromises popular GitHub Action used by Over 23,000 organizations <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/supply-chain-attack-compromises-popular-github-action-used-by-over-23000-organizations-u-m-v-0-l/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/supply-chain-attack-compromises-popular-github-action-used-by-over-23000-organizations-u-m-v-0-l/gD2P6Ple2L</a>

BeyondMachines :verified:Phishing campaign targeting developers via GitHub uses OAuth app to hijack accounts <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/phishing-campaign-targeting-developers-via-github-uses-oauth-app-to-hijack-accounts-u-4-a-f-w/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/phishing-campaign-targeting-developers-via-github-uses-oauth-app-to-hijack-accounts-u-4-a-f-w/gD2P6Ple2L</a>

BeyondMachines :verified:Active exploitation reported of Hitachi Vantara Pentaho BA Server flaws <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/active-exploitation-reported-of-hitachi-vantara-pentaho-ba-server-flaws-7-j-e-k-m/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/active-exploitation-reported-of-hitachi-vantara-pentaho-ba-server-flaws-7-j-e-k-m/gD2P6Ple2L</a>

BeyondMachines :verified:Spam campaign via XSS vulnerability in Krpano Virtual Tour Framework <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/spam-campaign-via-xss-vulnerability-in-krpano-virtual-tour-framework-2-a-a-p-t/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/spam-campaign-via-xss-vulnerability-in-krpano-virtual-tour-framework-2-a-a-p-t/gD2P6Ple2L</a>

BeyondMachines :verified:Researchers detect hackers exploiting flaw in Cisco Small Business Routers to create botnet <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/researchers-detect-hackers-exploiting-flaw-in-cisco-small-business-routers-to-create-botnet-u-8-j-i-0/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/researchers-detect-hackers-exploiting-flaw-in-cisco-small-business-routers-to-create-botnet-u-8-j-i-0/gD2P6Ple2L</a>

BeyondMachines :verified:CISA reports active exploitation of Microsoft Partner Center Flaw <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/cisa-reports-active-exploitation-of-microsoft-partner-center-flaw-4-h-r-v-p/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/cisa-reports-active-exploitation-of-microsoft-partner-center-flaw-4-h-r-v-p/gD2P6Ple2L</a>

BeyondMachines :verified:CISA reports actively exploited flaw in Craft CMS <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/cisa-reports-actively-exploited-flaw-in-craft-cms-q-4-x-d-6/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/cisa-reports-actively-exploited-flaw-in-craft-cms-q-4-x-d-6/gD2P6Ple2L</a>

BeyondMachines :verified:Palo Alto Networks reports another actively exploited firewall bug <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/attack" class="mention hashtag" rel="nofollow noopener" target="_blank">#attack</a> <a href="https://infosec.exchange/tags/activeattack" class="mention hashtag" rel="nofollow noopener" target="_blank">#activeattack</a> <a href="https://beyondmachines.net/event_details/palo-alto-networks-reports-another-actively-exploited-firewall-bug-c-o-d-g-r/gD2P6Ple2L" rel="nofollow noopener" translate="no" target="_blank">https://beyondmachines.net/event_details/palo-alto-networks-reports-another-actively-exploited-firewall-bug-c-o-d-g-r/gD2P6Ple2L</a>

Recent searches

Search options

Administered by:

Server stats:

#activeattack