South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware

AWS Default IAM Roles Found to Enable Lateral Movement and Cross-Service Exploitation

The Crowded Battle: Key Insights from the 2025 State of Pentesting Report

Chinese Hackers Deploy MarsSnake Backdoor in Multi-Year Attack on Saudi Organization

Go-Based Malware Deploys XMRig Miner on Linux Hosts via Redis Configuration Abuse

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added two high-severity security flaws impacting Broadcom Brocade Fabric OS and Commvault Web Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild.
The vulnerabilities in question are listed below -

CVE-2025-1976 (CVSS score: 8.6) - A code injection flaw

Headline

CISA Adds Actively Exploited Broadcom and Commvault Flaws to KEV Database

The Hacker News: Latest News