Apple addressed the seventh actively exploited zero-day

Threat Score:
81
Security Affairs
7 hours ago

Overview

Apple addressed a vulnerability impacting iOS, iPadOS, and macOS that it is under active exploitation in the wild. Apple addressed an actively exploited zero-day, tracked as CVE-2025-43300, in iOS, iPadOS, and macOS. The vulnerability is zero-day out-of-bounds write issue that resides in the ImageIO framework, an attacker could exploit it to cause memory corruption when processing […]...

Related Articles

5 articles
1

Hackers Weaponize QR Codes With Malicious Links to Steal Sensitive Data

GB Hackers 5 hours ago

Hackers Weaponize QR Codes With Malicious Links to Steal Sensitive Data Quishing, a powerful form of phishing that uses malicious hyperlinks contained in QR codes to expose user credentials and sensitive data, has surfaced in the ever-changing field of cybersecurity threats. Unlike traditional phishing, which relies on clickable links or deceptive emails, quishing exploits the inherent opacity of QR codes, which are unreadable to the human eye and thus evade immediate suspicion. Attackers favor

Score
78
Read more
4

Warlock Ransomware Exploits SharePoint Flaws for Initial Access and Credential Theft

GB Hackers 7 hours ago

Warlock Ransomware Exploits SharePoint Flaws for Initial Access and Credential Theft The Warlock ransomware group has intensified its operations by targeting unpatched on-premises Microsoft SharePoint servers, leveraging critical vulnerabilities to achieve remote code execution and initial network access. This campaign, observed in mid-2025, involves sending crafted HTTP POST requests to upload web shells, facilitating reconnaissance,privilege escalation, and credential theft. Initial Exploitati

Score
77
Read more