Vulnerable U logo
Vulnerable U
Sponsors
Subscribe
  • Vulnerable U
  • Topics
  • News

News

Cybersecurity and tech news articles

Mental HealthApacheMicrosoftcybercrimeMalwareChinaIranVulnerabilityLinuxAINewsIoTGovernmentHardwareAndroidRansomwareAppleRussiaNewsletterGoogledata breachGuides
NewsNews
ASUS Patches RCE Bugs in DriverHub
May 13, 2025

ASUS Patches RCE Bugs in DriverHub

The two vulnerabilities can be chained together to gain RCE

Newsroom
Newsroom
NewsNews
+1+1
Russian COLDRIVER Threat Group Using New LOSTKEYS Malware
May 08, 2025

Russian COLDRIVER Threat Group Using New LOSTKEYS Malware

The new malware is called LOSTKEYS and is designed to steal files from a number of different directories

Newsroom
Newsroom
NewsNews
+1+1
CISA Warns of OT Attacks By Lower-Level Adversaries
May 07, 2025

CISA Warns of OT Attacks By Lower-Level Adversaries

In a new advisory, the agencies–including the Environmental Protection Agency and Department of Energy–said that they are seeing an uptick in the number of attacks against OT networks by non-APT teams

Newsroom
Newsroom
NewsNews
Commvault CVE-2025-3928 Targeted by Attackers
May 01, 2025

Commvault CVE-2025-3928 Targeted by Attackers

Microsoft alerted the company to the issue in February

Newsroom
Newsroom
NewsNews
ASUS Warns of Critical Auth Bypass Flaw
Apr 23, 2025

ASUS Warns of Critical Auth Bypass Flaw

The vulnerability is in the AiCloud feature in some ASUS routers, which is designed to enable users to share and manage their files across devices

Newsroom
Newsroom
NewsNews
+1+1
Apple Fixes Two Zero Days in iOS
Apr 17, 2025

Apple Fixes Two Zero Days in iOS

Newsroom
Newsroom
NewsNews
Attackers Target FortiGate Devices With New Post-Exploit Technique
Apr 14, 2025

Attackers Target FortiGate Devices With New Post-Exploit Technique

Newsroom
Newsroom
NewsNews
Critical Fortinet Flaw Allows Remote, Unauthenticated Admin Password Change
Apr 09, 2025

Critical Fortinet Flaw Allows Remote, Unauthenticated Admin Password Change

The vulnerability has a CVSS score of 9.8 and is obviously rated as critical.

Newsroom
Newsroom
NewsNews
+1+1
Ivanti CVE-2025-22457 Under Active Attack
Apr 04, 2025

Ivanti CVE-2025-22457 Under Active Attack

The vulnerability affects many versions of Ivanti appliances and is being exploited by a Chinese actor

Newsroom
Newsroom
MalwareMalware
+1+1
Tax Season Phishing 2025 - Full Threat Breakdown
Apr 03, 2025

Tax Season Phishing 2025 - Full Threat Breakdown

Threat actors are exploiting the 2025 tax season with phishing campaigns delivering malware like BRc4, Latrodectus, Remcos, and more. Here's how attackers are using IRS lures, QR codes, and PhaaS platforms to breach U.S. organizations.

Matt Johansen
Matt Johansen
NewsNews
CISA Warns of RESURGE  Malware Targeting Ivanti Appliances
Mar 31, 2025

CISA Warns of RESURGE Malware Targeting Ivanti Appliances

Newsroom
Newsroom
NewsNews
+1+1
The Phishing Pages That Could Get You Killed
Mar 31, 2025

The Phishing Pages That Could Get You Killed

A phishing operation tied to Russian intelligence mimics Ukrainian paramilitary recruitment pages to unmask citizens opposing the war. Search engines helped rank the fakes — exposing users to surveillance, arrest, or worse.

Newsroom
Newsroom
Infosec's favorite weekly newsletter for news, tools, and tips with 28,000+ CISOs, founders, change-makers, and straight up hackers.

Vulnerable U

Infosec's favorite weekly newsletter for news, tools, and tips with 28,000+ CISOs, founders, change-makers, and straight up hackers.

Home

Posts

Authors

Sponsors

Sponsors

© 2025 Vulnerable U.

Privacy Policy

Terms of Use