Microsoft has released an out-of-band security update for a critical vulnerability in Windows Server Update Services (WSUS), tracked as CVE-2025-59287. This flaw allows remote code execution by unauthenticated threat actors, and a new patch is necessary to fully mitigate the issue as the initial patch was incomplete.

Security flaws in Microsoft's Azure ecosystem enable cybercriminals to create deceptive applications that imitate official services like the Azure Portal. Varonis discovered that attackers can bypass safeguards using invisible Unicode characters, leading to potential phishing attacks.

In Q3 2025, Cisco Talos observed a significant rise in ToolShell attacks, primarily targeting public-facing applications, with a notable increase in post-exploitation phishing campaigns. The report emphasizes the importance of network segmentation and rapid patching to mitigate these threats.

A critical path traversal vulnerability in Smithery.ai has exposed over 3,000 hosted AI servers and compromised thousands of API keys. The flaw, stemming from a configuration bug, allows attackers to access sensitive files and execute arbitrary code on the servers.

A recent study by MIT reveals that 80% of ransomware attacks utilize artificial intelligence, highlighting the need for a multi-layered defense approach. The research outlines three essential pillars for effective AI defense in cybersecurity.

A critical unauthenticated Local File Inclusion vulnerability (CVE-2025-11371) in Gladinet CentreStack and Triofox is being actively exploited by attackers. Users are advised to implement a temporary mitigation by modifying their Web.config file until a patch is released.

A zero-day vulnerability, tracked as CVE-2025-11371, is being actively exploited in Gladinet CentreStack and Triofox products, allowing local users to access system files without authentication. Experts warn that while mitigations exist, the flaw remains unpatched.

SonicWall has confirmed that a recent security incident involving its cloud backup service has affected all customers, contrary to earlier claims of limited impact. The stolen files contain encrypted credentials and configuration data, raising concerns about potential targeted attacks.

Huntress warns users of Gladinet's CentreStack and Triofox file-sharing tools to apply an urgent mitigation for a zero-day vulnerability (CVE-2025-11371) that is actively being exploited. With no patch available, the vulnerability could allow attackers to execute remote code.