PoC Exploit Published for Actively Exploited Cisco Identity Services Engine Flaw

Threat Score:

GB Hackers

7 days ago

Part of cluster #1404

Overview

PoC Exploit Published for Actively Exploited Cisco Identity Services Engine Flaw Security researchers have published a detailed proof-of-concept exploit for a critical vulnerability in Cisco Identity Services Engine (ISE) that allows attackers to achieve remote code execution without authentication. The flaw, tracked as CVE-2025-20281, affects the widely-deployed network access control platform and has been actively exploited in the wild. Critical Zero-Day Vulnerability Exposed The vulnerability...

Continue Reading on Original Site

5 articles

CVE-2025-54466: Apache OFBiz: RCE Vulnerability in scrum plugin

OSS Security • 3 hours ago

oss-secmailing list archives CVE-2025-54466: Apache OFBiz: RCE Vulnerability in scrum plugin Current thread: CVE-2025-54466: Apache OFBiz: RCE Vulnerability in scrum pluginNicolas Malin (Aug 05)

Score

APT36 Targets Indian Government: Credential Theft Campaign Uncovered

GB Hackers • 4 hours ago

APT36 Targets Indian Government: Credential Theft Campaign Uncovered A sophisticated phishing campaign attributed with medium confidence to the Pakistan-linked APT36 group, also known as Transparent Tribe or Mythic Leopard, has been uncovered targeting Indian defense organizations and government entities. This operation employs typo-squatted domains that mimic official Indian government platforms, such as mail.mgovcloud.in and virtualeoffice.cloud, to deceive users into surrendering credentials.

Score

North Korean Hackers Exploit NPM Packages to Steal Cryptocurrency and Sensitive Data

GB Hackers • 5 hours ago

North Korean Hackers Exploit NPM Packages to Steal Cryptocurrency and Sensitive Data Veracode Threat Research has uncovered a sophisticated North Korean cryptocurrency theft operation that continues to evolve, building on campaigns previously reported in February and June 2024. This latest iteration involves twelve malicious NPM packages, including cloud-binary, json-cookie-csv, cloudmedia, and nodemailer-enhancer, which were flagged by automated monitoring systems and subsequently removed from

Score

Ransomware Attack on Arkansas Oncology Group Affects 113,500 Individuals

Hipaajournal • 9 hours ago

Highlands Oncology Group, a comprehensive cancer care provider with six locations in Northwest Arkansas, has recently disclosed a cyberattack that […]

Score

A New Chapter for AI and Cybersecurity: SentinelOne Acquires Prompt Security

SentinelOne • 6 hours ago

SentinelOne acquires Prompt Security to deliver real-time AI visibility, control, and protection across enterprises. Learn more in this blog.

Score

CVES

CVE-2025-20281

CVE-2025-20337

DOMAINS

configureStrongSwan.sh

ATTACK TYPES

Remote Code Execution

INDUSTRIES

Education

VULNERABILITIES

Command Injection

DDoS

DoS

RCE

Remote Code Execution

COMPANIES

AMD

Adobe

Amazon

Apple

Cisco

AGENCIES

CISA

SECURITY VENDORS

Cloudflare

Fortinet

PLATFORMS

AWS

Android

Apache

Azure

Container

APT GROUPS

UNC3886

RANSOMWARE

AnDROid

KEYPASS

Rapid

Unsafe

Zlader

MALWARE

Broomstick

Dark

STOP

DOMAINS

configureStrongSwan.sh

ARTICLE INFORMATION

Article #5323

Published 7 days ago

GB Hackers

THREAT HUNTING

THREAT INTELLIGENCE

BUSINESS INTELLIGENCE

Save to Folder

Article Intelligence

THREAT HUNTING

THREAT INTELLIGENCE

BUSINESS INTELLIGENCE

Overview

Related Articles

CVE-2025-54466: Apache OFBiz: RCE Vulnerability in scrum plugin

APT36 Targets Indian Government: Credential Theft Campaign Uncovered

North Korean Hackers Exploit NPM Packages to Steal Cryptocurrency and Sensitive Data

Ransomware Attack on Arkansas Oncology Group Affects 113,500 Individuals

A New Chapter for AI and Cybersecurity: SentinelOne Acquires Prompt Security

Save to Folder

Article Intelligence

We use cookies

Cookie Settings

Essential Cookies

Analytics Cookies

Performance Cookies

Marketing Cookies