CVE-2025-20333 is a vulnerability tracked across 13 threat clusters and 33 intelligence report mentions on ThreatCluster. First observed November 2, 2025; most recent activity May 6, 2026.
The Akira ransomware group has been identified as a significant threat to critical infrastructure, with the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the FBI warning of its active ransomware…
A sophisticated backdoor malware named Firestarter has been discovered on Cisco Firepower devices, attributed to the state-sponsored threat actor UAT-4356. The malware exploits two vulnerabilities, CVE-2025-20333 and…
BeyondTrust has issued a warning regarding a critical remote code execution (RCE) vulnerability in its Remote Support and Privileged Remote Access software. The flaw, tracked as CVE-2026-1731, allows unauthenticated…
Cisco has disclosed a high-severity denial-of-service (DoS) vulnerability tracked as CVE-2026-20188 affecting the Crosswork Network Controller (CNC) and Network Services Orchestrator (NSO). The flaw arises from…
Cisco disclosed two critical vulnerabilities in its Unified Center Express (CCX) platform that could allow unauthenticated remote attackers to execute malicious code and gain elevated privileges. The vulnerabilities,…
The Cybersecurity and Infrastructure Security Agency (CISA) has retired ten emergency directives issued between 2019 and 2024. These directives were part of efforts to address evolving cybersecurity threats, including…
Cisco has disclosed critical vulnerabilities in its Unified Contact Center Express (CCX) platform and Adaptive Security Appliances (ASA) that allow unauthenticated remote attackers to execute arbitrary code and…
Cisco Systems has issued a warning regarding a new attack variant targeting its Secure Firewall devices, leveraging vulnerabilities CVE-2025-20333 and CVE-2025-20362. These vulnerabilities could potentially lead to…
Ransomware actors are increasingly focusing on cloud-based assets, particularly in AWS environments. This shift involves utilizing various tactics to compromise critical business data, moving away from traditional…
The Washington Post has confirmed a data breach affecting nearly 10,000 current and former employees due to a cyberattack linked to vulnerabilities in Oracle's E-Business Suite. The breach, attributed to the Cl0p…