CVE-2025-13592 vulnerability affecting the Advanced Ads WordPress plugin Threat Advisories CyberDefenderDecember 30, 2025December 30, 20253 mins0 CVE-2025-13592 is a high-severity remote code execution (RCE) vulnerability affecting the Advanced Ads WordPress plugin (also known…continue reading..
Telecom Sector Under Sustained Attack — Technical View Latest Cyber Attack CyberDefenderDecember 30, 2025December 30, 20255 mins0 1. APT Activity: Targeting Signaling, Core, and Management Planes Attack Surface Common Techniques Impact 2. Supply-Chain Compromise:…continue reading..
Highly sophisticated malware campaign targeting Maven Central Latest Cyber Attack CyberDefenderDecember 30, 2025December 30, 20254 mins0 Security researchers have uncovered what appears to be the first highly sophisticated malware campaign targeting Maven Central,…continue reading..
From User-Mode to Ring-0: Mustang Panda’s Shift to Kernel-Level Espionage Cyber Threat Intelligence AegironDecember 30, 2025December 30, 20257 mins0 Recent activity linked to Mustang Panda (also tracked as HoneyMyte or Bronze President) shows a clear shift…continue reading..
Romanian Waters (Apele Române) Ransomware Attack Threat Advisories CyberDefenderDecember 30, 2025December 30, 20253 mins0 Systems Impacted The attack disrupted large parts of the organization’s IT infrastructure, including: However, operational technology (OT)…continue reading..
When Legitimate Cloud Services Turn Malicious: Inside the Google Cloud Email Abuse Campaign Cyber Threat Intelligence AegironDecember 30, 2025December 30, 20256 mins0 Over the past 24 hours, incident responders and threat analysts have been tracking a phishing campaign that…continue reading..
High-Risk Vulnerabilities in Nagios XI Allow Authenticated Attackers to Access Data and System Files Threat Advisories AegironDecember 30, 2025December 30, 20259 mins0 CVE-2025-67255 Product: Nagios XIAffected Version: 2026R1.0.1 (Build 1762361101)Vulnerability Type: SQL InjectionCVSS v3.1 Score: 8.1Severity: HighAttack Vector: NetworkAuthentication…continue reading..
CVE-2025-68860 — Critical Authentication Bypass in WordPress Mobile Builder Plugin Threat Advisories CyberDefenderDecember 30, 2025December 30, 20254 mins0 Name: CVE-2025-68860 Type: Authentication Bypass (using alternate path or channel) Severity: Critical — CVSS v3.1 Base Score…continue reading..
CVE-2024-27480, CVE-2024-25183, CVE-2024-25182 in givanz VvvebJs 1.7.2 Vulnerabilities CyberDefenderDecember 30, 2025December 30, 202513 mins0 All three CVE entries affect givanz VvvebJs 1.7.2 (a web editor / web UI component). The three…continue reading..
CVE-2025-68562: One Upload, Total Takeover: How a MapSVG File Upload Bug Opens the Door to Web Shell Attacks Threat Advisories AegironDecember 30, 2025December 30, 20259 mins0 Overview CVE ID: CVE-2025-68562Affected Product: MapSVG (RomanCode WordPress plugin)Affected Versions: All versions up to and including 8.7.3Severity:…continue reading..
