Aggregator

A vulnerability was found in Virtuemart Component up to 4.4.8 on Joomla. It has been declared as critical. This vulnerability affects unknown code of the component Product Management Area. The manipulation leads to sql injection. This vulnerability was named CVE-2025-25228. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Saviynt OVA based Connect on Linux. It has been classified as critical. This affects an unknown part of the component Request Handler. The manipulation leads to improper input validation. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is uniquely identified as CVE-2025-3837. It is possible to initiate the attack remotely. There is no exploit available.

微软史上最大安全工程：3.4万工程师11个月打造"安全未来计划"，全面防御网络威胁！

The problem is simple: all breaches start with initial access, and initial access comes down to two primary attack vectors – credentials and devices. This is not news; every report you can find on the threat landscape depicts the same picture.  The solution is more complex. For this article, we’ll focus on the device threat vector. The risk they pose is significant, which is why device

关键词勒索软件Sekoia 威胁检测与研究团队（TDR）的一份新报告详细阐述了 Interlock 勒索软件的

关键词安全漏洞Speedify VPN 的macOS 应用程序中发现了一个重大安全漏洞，编号为 CVE-202

关键词数据泄露由于英国软件公司 Logezy 的员工管理数据库配置错误，800 万英国医疗保健工作者记录（包括

内部敏感文件遭万人共享，特朗普政府又曝安全漏洞

此前约7.6万名员工个人信息泄露

Американцы променяли торий на уран в 60-х… И теперь кусают локти?

For the latest discoveries in cyber research for the week of 21st April, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Retail giant Ahold Delhaize has suffered a cyber-attack resulting in data theft of customer information from its US business systems. The attack, claimed by ransomware group INC Ransom, impacted Ahold Delhaize USA […]

The post 21st April – Threat Intelligence Report appeared first on Check Point Research.

Самая быстрая память в мире: прорыв Фуданьского университета.

上周关注度较高的产品安全漏洞(20250414-20250420)

国家信息安全漏洞共享平台（以下简称CNVD）本周共收集、整理信息安全漏洞335个，其中高危漏洞167个、中危漏洞149个、低危漏洞19个。