16 May 2025

Cyber Security Week in Review: May 16, 2025

 Cyber Security Week in Review: May 16, 2025
In brief: Microsoft, Fortinet, Ivanti, and Google patch zero-days, crypto exchange Coinbase reveals a data breach, and more.

Latest Posts

Russia-linked espionage operation targeting webmail servers via XSS flaws

Russia-linked espionage operation targeting webmail servers via XSS flaws

The campaign exploits XSS vulnerabilities in widely used webmail servers to steal sensitive data from high-value targets.
15 May 2025
Kosovo man extradited to US for running BlackDB.cc criminal marketplace

Kosovo man extradited to US for running BlackDB.cc criminal marketplace

If convicted on all counts, Masurica faces up to 55 years in federal prison.
14 May 2025
Multiple actively exploited zero-days patched in Microsoft, Ivanti, and Fortinet products

Multiple actively exploited zero-days patched in Microsoft, Ivanti, and Fortinet products

Microsoft shipped patches for over 70 flaws, five of which have been flagged as actively exploited zero-day bugs.
14 May 2025
Chinese hackers exploit SAP NetWeaver in cyber campaigns targeting critical infrastructure

Chinese hackers exploit SAP NetWeaver in cyber campaigns targeting critical infrastructure

The flaw was exploited to gain access to enterprise systems globally.
14 May 2025

Popular Posts
Featured vulnerabilities
Protection mechanism failure in Arista MultiAccess FPGA software
Low Patched | 17 May, 2025
Privilege escalation in Arista CloudVision Portal
Low Patched | 17 May, 2025
Improper privilege management in Arista CloudVision
Medium Patched | 17 May, 2025
Privilege escalation in Arista CloudVision Portal
Medium Patched | 17 May, 2025
Cleartext transmission of sensitive information in Arista EOS
Medium Patched | 17 May, 2025