Overview
Description
Statistics
- 1 Post
Fediverse
Understanding the CVE-2025-26633 Vulnerability in Microsoft Management Console
#cve202526633
#microsoftmanagementconsole
#cybersecurity
#vulnerability
#encryptHub
Overview
- H3C
- Magic NX30 Pro
Description
Statistics
- 3 Posts
Fediverse
Critical alert: H3C Magic NX30 Pro routers (firmware up to V100R007) have a severe command injection flaw (CVE-2025-2727) allowing remote code execution. Patch immediately if possible. Details: https://redteamnews.com/exploit/cve/critical-command-injection-vulnerability-in-h3c-magic-nx30-pro-routers-cve-2025-2727/ #CVE-2025-2727
Critical alert: H3C Magic NX30 Pro routers (firmware ≤V100R007) vulnerable to remote command injection (CVE-2025-2727, CVSS 8.8). Patch immediately and monitor for attacks on /api/wizard/getNetworkStatus. Details: https://redteamnews.com/exploit/cve/critical-command-injection-vulnerability-in-h3c-magic-nx30-pro-routers-cve-2025-2727/ #CVE-2025-2727
Critical vulnerability alert! H3C Magic NX30 Pro routers (firmware up to V100R007) have a command injection flaw (CVE-2025-2727) allowing remote code execution. Patch ASAP or restrict access to management interfaces. Details: https://redteamnews.com/exploit/cve/critical-command-injection-vulnerability-in-h3c-magic-nx30-pro-routers-cve-2025-2727/ #CVE-2025-2727
Overview
Description
Statistics
- 3 Posts
Fediverse
Russian APT28's new "Nearest Neighbor Attack" exploits nearby Wi-Fi networks to breach targets. Weak authentication lets attackers pivot through adjacent orgs. Key defenses: enforce Wi-Fi MFA, segment networks, monitor LoLBins. #CVE-2022-38028 https://redteamnews.com/threat-intelligence/apt-news/russian-apt28s-nearest-neighbor-attack-weaponizing-nearby-wi-fi-networks-for-covert-access/
Russian APT28's "Nearest Neighbor Attack" exploits nearby Wi-Fi networks to breach targets. Weak auth lets them pivot through adjacent orgs. MFA and network segmentation are critical. #CVE-2022-38028 Details: https://redteamnews.com/threat-intelligence/apt-news/russian-apt28s-nearest-neighbor-attack-weaponizing-nearby-wi-fi-networks-for-covert-access/
Russian APT28's "Nearest Neighbor Attack" exploits nearby Wi-Fi networks to breach targets. Weak auth lets them pivot through adjacent orgs using LoLBins. MFA & segmentation are critical. #CVE-2022-38028 https://redteamnews.com/threat-intelligence/apt-news/russian-apt28s-nearest-neighbor-attack-weaponizing-nearby-wi-fi-networks-for-covert-access/
Overview
Description
Statistics
- 3 Posts
Fediverse
Critical command injection flaw in H3C Magic routers (CVE-2025-2732) allows remote code execution via HTTP requests. Affects NX15, NX30 Pro, NX400, R3010, BE18000. Patch not yet available - isolate devices and monitor for exploitation. Details: https://redteamnews.com/exploit/cve/critical-command-injection-vulnerability-in-h3c-magic-routers-cve-2025-2732-what-security-teams-need-to-know/ #CVE-2025-2732
Critical command injection flaw (CVE-2025-2732) found in H3C Magic routers—allows remote code execution via HTTP requests. Affects NX15, NX30 Pro, NX400, R3010, BE18000. Patch not yet available. Isolate devices and monitor for exploitation. Details: https://redteamnews.com/exploit/cve/critical-command-injection-vulnerability-in-h3c-magic-routers-cve-2025-2732-what-security-teams-need-to-know/
Critical command injection flaw (CVE-2025-2732) found in H3C Magic routers - allows remote code execution via HTTP requests. Patch ASAP if using NX15/NX30 Pro/NX400/R3010/BE18000 models. Isolate affected devices and monitor for exploitation. Details: https://redteamnews.com/exploit/cve/critical-command-injection-vulnerability-in-h3c-magic-routers-cve-2025-2732-what-security-teams-need-to-know/
Overview
Description
Statistics
- 1 Post
Fediverse
Understanding the CrushFTP Vulnerability: A Call to Action
https://thedefendopsdiaries.com/understanding-the-crushftp-vulnerability-a-call-to-action/
#crushftp
#cve20244040
#datasecurity
#cyberthreats
#vulnerability
Overview
Description
Statistics
- 3 Posts
Fediverse
New Snort rules alert: Critical PostgreSQL SQLi (CVE-2025-1094) and Palo Alto VPN exploits in the wild. Also covers phishing kits and implant.js trojan activity. Update your defenses now. #CVE-2025-1094 https://redteamnews.com/threat-intelligence/critical-postgresql-sqli-and-palo-alto-vpn-exploits-targeted-in-latest-snort-rules-update-feb-2025-week-4/
New Snort rules alert: Critical PostgreSQL SQLi (CVE-2025-1094) and Palo Alto VPN exploits in the wild. Plus phishing patterns and implant.js trojan coverage. Security teams should prioritize testing these detections. Details: https://redteamnews.com/threat-intelligence/critical-postgresql-sqli-and-palo-alto-vpn-exploits-targeted-in-latest-snort-rules-update-feb-2025-week-4/ #CVE-2025-1094
New Snort rules alert! Critical PostgreSQL SQLi (CVE-2025-1094) and Palo Alto VPN exploits now detectable, plus phishing infrastructure patterns. Stay ahead of active threats with this update. #CVE-2025-1094 https://redteamnews.com/threat-intelligence/critical-postgresql-sqli-and-palo-alto-vpn-exploits-targeted-in-latest-snort-rules-update-feb-2025-week-4/
Overview
- Kentico
- Xperience
Description
Statistics
- 1 Post
Fediverse
Critical auth bypass found in Kentico Xperience CMS (CVE-2025-2746, CVSS 9.8). Affects versions through 13.0.172 - allows attackers to bypass auth via staging service. Patch now or disable if unused. Details: https://redteamnews.com/exploit/cve/critical-authentication-bypass-in-kentico-xperience-cms-cve-2025-2746-what-you-need-to-know/ #CVE-2025-2746
Overview
Description
Statistics
- 3 Posts
Fediverse
Critical command injection flaw (CVE-2025-2726) found in H3C Magic routers - no patch yet. Affects NX15, NX30 Pro, NX400, R3010, BE18000. Attackers can execute arbitrary commands via HTTP requests. Mitigate now: restrict access, monitor /api/esps. #CVE-2025-2726 https://redteamnews.com/exploit/cve/critical-command-injection-vulnerability-in-h3c-magic-routers-cve-2025-2726-puts-networks-at-risk/
Critical command injection flaw (CVE-2025-2726) found in H3C Magic routers - no patch yet. Attackers can run arbitrary commands via HTTP requests. Affects NX15, NX30 Pro, NX400, R3010, BE18000 models. Mitigate now: restrict access, monitor /api/esps. #CVE-2025-2726 https://redteamnews.com/exploit/cve/critical-command-injection-vulnerability-in-h3c-magic-routers-cve-2025-2726-puts-networks-at-risk/
Critical command injection flaw (CVE-2025-2726) found in H3C Magic routers—allows unauthenticated attackers to execute arbitrary commands. No patch yet. Affects NX15, NX30 Pro, NX400, R3010, BE18000. Mitigate by restricting access to /api/esps. Details: https://redteamnews.com/exploit/cve/critical-command-injection-vulnerability-in-h3c-magic-routers-cve-2025-2726-puts-networks-at-risk/ #CVE-2025-2726
Overview
- Microsoft
- Windows 10 Version 1809
Description
Statistics
- 1 Post
Fediverse
Understanding and Mitigating the CVE-2025-24071 Vulnerability in Windows
#cve202524071
#windowsvulnerability
#ntlm
#cybersecurity
#patchmanagement
Overview
Description
Statistics
- 6 Posts
Fediverse
Chinese APT Earth Estries has been targeting telecoms & governments worldwide since 2023 with malware like GHOSTSPIDER & DEMODEX. Uses Cloudflare Workers for C2 and shares infra with other Chinese groups. Patch Ivanti/Fortinet (CVE-2024-36401). Details: https://redteamnews.com/threat-intelligence/apt-news/earth-estries-apt-groups-long-term-cyber-espionage-campaign-targeting-global-infrastructure/
Chinese APT Earth Estries has been targeting global telecoms & govs since 2023 with malware like GHOSTSPIDER & DEMODEX. Uses Cloudflare Workers for stealth. Patch CVE-2024-36401. IOCs & detection tips: https://redteamnews.com/threat-intelligence/apt-news/earth-estries-apt-groups-long-term-cyber-espionage-campaign-targeting-global-infrastructure/
Chinese APT Earth Estries has been targeting global telecom & govt since 2023 with malware like GHOSTSPIDER & DEMODEX. Uses Cloudflare Workers for C2. Patch Ivanti/Fortinet (CVE-2024-36401). IOCs: https://redteamnews.com/threat-intelligence/apt-news/earth-estries-apt-groups-long-term-cyber-espionage-campaign-targeting-global-infrastructure/
Chinese APT Earth Baxia is targeting APAC orgs with GeoServer exploits (CVE-2024-36401) and sophisticated malware like EAGLEDOOR. Patch now and watch for these IOCs. Details: https://redteamnews.com/threat-intelligence/apt-news/chinese-apt-earth-baxia-targets-apac-with-geoserver-exploits-and-sophisticated-malware/ #CVE-2024-36401
Chinese APT Earth Baxia is targeting APAC orgs with GeoServer exploits (CVE-2024-36401) and custom malware like EAGLEDOOR. Patch now and watch for suspicious cloud C2 traffic. Details: https://redteamnews.com/threat-intelligence/apt-news/chinese-apt-earth-baxia-targets-apac-with-geoserver-exploits-and-sophisticated-malware/ #CVE-2024-36401
Chinese APT Earth Baxia is targeting APAC orgs with GeoServer exploits (CVE-2024-36401) and custom malware like EAGLEDOOR. Patch now and watch for suspicious cloud C2 traffic. #CVE-2024-36401 https://redteamnews.com/threat-intelligence/apt-news/chinese-apt-earth-baxia-targets-apac-with-geoserver-exploits-and-sophisticated-malware/