Vulnerability archivos - CISO2CISO.COM & CYBER SECURITY GROUP

Vulnerability

OneDrive File Picker Flaw Gives Apps Full Access to User Drives – Source:hackread.com

OneDrive File Picker Flaw Gives Apps Full Access to User Drives – Source:hackread.com

Microsoft Entra Design Lets Guest Users Gain Azure Control, Researchers Say – Source:hackread.com

Microsoft Entra Design Lets Guest Users Gain Azure Control, Researchers Say – Source:hackread.com

Chinese Hackers Exploit Cityworks 0-Day to Hit US Local Governments – Source:hackread.com

Chinese Hackers Exploit Cityworks 0-Day to Hit US Local Governments – Source:hackread.com

Researchers Drop PoC for Fortinet CVE-2025-32756, Urging Quick Patching – Source:hackread.com

Researchers Drop PoC for Fortinet CVE-2025-32756, Urging Quick Patching – Source:hackread.com

Zimbra CVE-2024-27443 XSS Flaw Hits 129K Servers, Sednit Suspected – Source:hackread.com

Zimbra CVE-2024-27443 XSS Flaw Hits 129K Servers, Sednit Suspected – Source:hackread.com

BadSuccessor Exploits Windows Server 2025 Flaw for Full AD Takeover – Source:hackread.com

BadSuccessor Exploits Windows Server 2025 Flaw for Full AD Takeover – Source:hackread.com

Chrome 0-Day CVE-2025-4664 Exposes Windows, Linux Browser Activity – Source:hackread.com

Chrome 0-Day CVE-2025-4664 Exposes Windows, Linux Browser Activity – Source:hackread.com

KrebsOnSecurity Hit with 6.3 Tbps DDoS Attack via Aisuru Botnet – Source:hackread.com

KrebsOnSecurity Hit with 6.3 Tbps DDoS Attack via Aisuru Botnet – Source:hackread.com

Hazy Hawk Attack Spotted Targeting Abandoned Cloud Assets Since 2023 – Source:hackread.com

Hazy Hawk Attack Spotted Targeting Abandoned Cloud Assets Since 2023 – Source:hackread.com

Serviceaide Leak Exposes Records of 500,000 Catholic Health Patients – Source:hackread.com

Serviceaide Leak Exposes Records of 500,000 Catholic Health Patients – Source:hackread.com

DDoSecrets Adds 410GB of TeleMessage Breach Data to Index – Source:hackread.com

DDoSecrets Adds 410GB of TeleMessage Breach Data to Index – Source:hackread.com

Over 40,000 iOS Apps Found Exploiting Private Entitlements, Zimperium – Source:hackread.com

Over 40,000 iOS Apps Found Exploiting Private Entitlements, Zimperium – Source:hackread.com

Russia-Linked SpyPress Malware Exploits Webmails to Spy on Ukraine – Source:hackread.com

Russia-Linked SpyPress Malware Exploits Webmails to Spy on Ukraine – Source:hackread.com

Pwn2Own Berlin 2025: Windows 11, VMware, Firefox and Others Hacked – Source:hackread.com

Pwn2Own Berlin 2025: Windows 11, VMware, Firefox and Others Hacked – Source:hackread.com

Ivanti EPMM Hit by Two Actively Exploited 0day Vulnerabilities – Source:hackread.com

Ivanti EPMM Hit by Two Actively Exploited 0day Vulnerabilities – Source:hackread.com

Coinbase Customer Info Stolen by Bribed Overseas Agents – Source:hackread.com

Coinbase Customer Info Stolen by Bribed Overseas Agents – Source:hackread.com

‘Admin’ and ‘123456’ Still Among Most Used Passwords in FTP Attacks – Source:hackread.com

‘Admin’ and ‘123456’ Still Among Most Used Passwords in FTP Attacks – Source:hackread.com

CISA Adds TeleMessage Vulnerability to KEV List Following Breach – Source:hackread.com

CISA Adds TeleMessage Vulnerability to KEV List Following Breach – Source:hackread.com

Zoom Fixes High-Risk Flaw in Latest Update – Source:hackread.com

Zoom Fixes High-Risk Flaw in Latest Update – Source:hackread.com

New SEO Poisoning Campaign Targeting IT Admins With Malware – Source:hackread.com

New SEO Poisoning Campaign Targeting IT Admins With Malware – Source:hackread.com

Legacy Login in Microsoft Entra ID Exploited to Breach Cloud Accounts – Source:hackread.com

Legacy Login in Microsoft Entra ID Exploited to Breach Cloud Accounts – Source:hackread.com

Israeli NSO Group Fined $168M for Pegasus Spyware Attack on WhatsApp – Source:hackread.com

Israeli NSO Group Fined $168M for Pegasus Spyware Attack on WhatsApp – Source:hackread.com

Critical Langflow Vulnerability (CVE-2025-3248) Actively Exploited, Warns CISA – Source:hackread.com

Critical Langflow Vulnerability (CVE-2025-3248) Actively Exploited, Warns CISA – Source:hackread.com

New Cloud Vulnerability Data Shows Google Cloud Leads in Risk – Source:hackread.com

New Cloud Vulnerability Data Shows Google Cloud Leads in Risk – Source:hackread.com

Germany Most Targeted Country in Q1 2025 DDoS Attacks – Source:hackread.com

Germany Most Targeted Country in Q1 2025 DDoS Attacks – Source:hackread.com

watchTowr Warns of Active Exploitation of SonicWall SMA 100 Devices – Source:hackread.com

watchTowr Warns of Active Exploitation of SonicWall SMA 100 Devices – Source:hackread.com

Billions of Apple Devices at Risk from “AirBorne” AirPlay Vulnerabilities – Source:hackread.com

Billions of Apple Devices at Risk from “AirBorne” AirPlay Vulnerabilities – Source:hackread.com

Ticket Resale Platform TicketToCash Left 200GB of User Data Exposed – Source:hackread.com

Ticket Resale Platform TicketToCash Left 200GB of User Data Exposed – Source:hackread.com

Sneaky WordPress Malware Disguised as Anti-Malware Plugin – Source:hackread.com

Sneaky WordPress Malware Disguised as Anti-Malware Plugin – Source:hackread.com

Google Introduces Agentic AI to Combat Cybersecurity Threats – Source:hackread.com

Google Introduces Agentic AI to Combat Cybersecurity Threats – Source:hackread.com

MORE RESOURCES

CISO Strategics

cyber operations & soc

red - blue & purple teams

THREAT INTELLIGENCE

VULNERABILITIES

CYBER ATTACKS

DATA BREACH

MALLWARE

RANSOMWARE

DDOS ATTACKS

CLOUD SECURITY

IOT SECURITY

hacking

CISO
STRATEGICS

CYBER
ARCHITECTURE

SOC CSIRT
OPERATIONS

CYBERSECURITY
TOOLS

CYBERSECURITY
VENDORS

CYBERSECURITY
MSSP

Accenture
Attos
AT&T Cybersecurity
BT Security
BASE 4 - Hispam
Deloitte
Entelgy Security
KPMG
NTT Security
Novared - Hispam
Neosecure - Hispam
Orange Cyberdefense
PwC
Telefonica Tech
Thales
Verizon Security