Mastodon

notsecure<a href="https://infosec.exchange/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> has added CVE-2025-30406 to their exploited list.Gladinet CentreStack Use of Hard-coded Cryptographic Key Vulnerability: Gladinet CentreStack contains a use of hard-coded cryptographic key vulnerability in the way that the application manages keys used for ViewState integrity verification. Successful exploitation allows an attacker to forge ViewState payloads for server-side deserialization, allowing for remote code execution.<a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-30406" rel="nofollow noopener" translate="no" target="_blank">https://nvd.nist.gov/vuln/detail/CVE-2025-30406</a>

notsecure<a href="https://infosec.exchange/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> has added CVE-2025-29824 to their exploited list.Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability: Microsoft Windows Common Log File System (CLFS) Driver contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally.<a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-29824" rel="nofollow noopener" translate="no" target="_blank">https://nvd.nist.gov/vuln/detail/CVE-2025-29824</a>

0x40kJust another Monday in IT, right? Dealing with CrushFTP, the CISA KEV list, and active exploits... 🤯So, let's talk about CVE-2024-4040 (heads-up, the original post might've had a typo on the year/number!). It’s a tricky authentication bypass vulnerability. While that might sound a bit technical, the bottom line is it's seriously critical. Why? Because unauthenticated attackers could potentially log in as *any* user and basically hijack the entire system. Yikes.Now, CISA has flagged this one, adding it to their Known Exploited Vulnerabilities list. Their advice? Get patching done by April 28th! You know, this probably impacts quite a few places that might not even have it on their radar yet. 🙄Why am I even posting about this? Well, because relying solely on automated scans often isn't enough – they can miss things like this. This is exactly the kind of vulnerability that thorough pentesting is designed to uncover. Plus, let's be honest, your clients (or your own company!) will thank you big time for spotting and fixing these issues *before* things go boom. 😉Here’s a quick action plan:* Get those systems updated ASAP! * Give your setups a thorough check. * Time for a password reset on affected accounts. * Make sure you've got 2FA turned on wherever possible. * Keep a close watch on your network activity.Over to you: What are your go-to tools for hunting down vulnerabilities like this one? Drop your thoughts below! 🤔<a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#pentesting</a> <a href="https://infosec.exchange/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/CrushFTP" class="mention hashtag" rel="nofollow noopener" target="_blank">#CrushFTP</a> <a href="https://infosec.exchange/tags/CVE" class="mention hashtag" rel="nofollow noopener" target="_blank">#CVE</a>

AAKLCISA has updated the KEV catalogue:- CVE-2025-31161: CrushFTP Authentication Bypass Vulnerability <a href="https://www.cve.org/CVERecord?id=CVE-2025-31161" rel="nofollow noopener" translate="no" target="_blank">https://www.cve.org/CVERecord?id=CVE-2025-31161</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a>

Chuck DarwinTrump’s order also toys with innovative new abuses of power. It directs the nonpartisan, independent Election Assistance Commission to tighten ID measures — a directive far beyond the scope of presidential authority. But precedent, and the rule of law, have not often dissuaded the Trump administration.🆘Ominous language in the order directs states to provide voter roll information to Immigration and Customs Enforcement and the Department of Homeland Security (DHS). (The text also goes out of its way to praise the rather dystopian biometric voter ID measures in use in India.) Later, the executive order stipulates that state voter lists must be made available for 👉review by the DHS and “the DOGE Administrator” — this presumably referring to private citizen and public embarrassment Elon Musk.In other words, the infamously intrusive DHS, now with the infamously disruptive DOGE, will be given some sort of authority over state voter rolls, many of which are already subjected to baseless and illegal purges. We can only imagine what sort of further mangling the flunkies of DOGE might have in mind. After all, we’ve seen what kind of technical “upgrades” and other impending disasters they intend to carry out at the Social Security Administration (SSA). (In fact, the executive order even contains a roundabout means of facilitating DOGE and Trump’s access to the SSA, dictating that the SSA commissioner must provide SSA data for voting eligibility determinations. This may be intended to circumvent legal barriers to DOGE intervention.)Speaking of <a href="https://c.im/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://c.im/tags/threats" class="mention hashtag" rel="nofollow noopener" target="_blank">#threats</a>, the Trump administration has already hampered the "Cybersecurity and Infrastructure Security Agency" ( <a href="https://c.im/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> ), 🆘placing its 17-member election security team on administrative leave and “under review.” CISA is tasked with addressing election threats, from cyberattacks to violence against poll workers. Here, it seems likely that Trump is pursuing another petty <a href="https://c.im/tags/vendetta" class="mention hashtag" rel="nofollow noopener" target="_blank">#vendetta</a>. The president is evidently a bit bitter about CISA’s efforts to contradict his misinformation about COVID and the 2020 election, as comments from DHS chief Kristi Noem (who claimed the agency has ventured “far off mission”) have hinted.Yet another blow to electoral integrity arrived with the 🆘defunding of the Center for Internet Security and the subsequent 🆘closure of its subsidiary, the "Election Infrastructure Information Sharing and Analysis Center" ( EI-ISAC ). EI-ISAC, alongside the "Multi-State Information Sharing and Analysis Center", served as a technical support and advisory arm on internet security. Shuttering it may now leave open possible avenues for cyberattacks, foreign interference, and other uncertain threats, according to Politico.Unfortunately, Trump’s recent executive order contains even more diktats: 💥requiring the reporting of foreign nationals to the DHS, 💥unsourced claims of illicit foreign contributions to direct-democracy ballot initiatives (which the right generally does not like), 💥and additional stringent demands to serve up voter information to unaccountable agencies, for purposes unknown.🔥The most chilling section, though, might be the one titled “Prosecuting Election Crimes.” It defines as a <a href="https://c.im/tags/criminal" class="mention hashtag" rel="nofollow noopener" target="_blank">#criminal</a> anyone who “registered or voted despite being ineligible,” “committed election fraud,” “provided false information [on] forms,” “threatened voters or election officials,” or “engaged in unlawful conduct to interfere in the election process.” Worth noting that some of these definitions are enormously subjective. If it comes to prosecuting activists or political opponents — which has become an acute possibility — the listed violations will surely provide for some generously broad legal interpretations.Lastly, the Trump administration appears keen to ensure its threats do not ring hollow. ❌The order promises to penalize recalcitrant states by conditioning their funding on obedience. The administration reserves itself the right to “cease providing Federal funds to States that do not comply[.]” We’ve already been treated to the ugly sight of Trump withholding funds as a cudgel. Perhaps he’s emboldened by his success in goading elite universities to kiss the ring, some so eager to grovel and demonstrate fealty to escape his wrath that they folded preemptively in fear — or just complicity. Voting rights advocates are hoping that at least some in the judiciary will not capitulate so easily.<a href="https://truthout.org/articles/trump-assumes-unheard-of-powers-in-ordering-federal-overhaul-of-elections/" rel="nofollow noopener" translate="no" target="_blank">https://truthout.org/articles/trump-assumes-unheard-of-powers-in-ordering-federal-overhaul-of-elections/</a>

NachoLos recortes en <a href="https://frankenwolke.com/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> a pesar de ser una agencia americana posiblemente terminen teniendo un impacto negativo en la <a href="https://frankenwolke.com/tags/ciberseguridad" class="mention hashtag" rel="nofollow noopener" target="_blank">#ciberseguridad</a> global.Por ejemplo el <a href="https://frankenwolke.com/tags/KEV" class="mention hashtag" rel="nofollow noopener" target="_blank">#KEV</a> que mantienen (un catálogo de vulnerabilidades que se sabe que se están explotando por el mundo adelante) es una joya de cara a hacer una gestión de vulnerabilidades efectiva.Otra cosa es que tengamos que quitarnos esa dependencia y buscar alternativas propias (además de ser conscientes de que no nos avisarán de las que exploten ellos, evidentemente), pero perder esa fuente va a hacer mucho daño a corto.<a href="https://www.theregister.com/2025/04/08/cisa_cuts_threat_intel/" rel="nofollow noopener" translate="no" target="_blank">https://www.theregister.com/2025/04/08/cisa_cuts_threat_intel/</a>

securityaffairsU.S. <a href="https://infosec.exchange/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> adds <a href="https://infosec.exchange/tags/Ivanti" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ivanti</a> Connect Secure, Policy Secure and ZTA Gateways flaw to its Known Exploited Vulnerabilities catalog <a href="https://securityaffairs.com/176332/security/u-s-cisa-adds-ivanti-connect-secure-policy-secure-and-zta-gateways-flaw-to-its-known-exploited-vulnerabilities-catalog-2.html" rel="nofollow noopener" translate="no" target="_blank">https://securityaffairs.com/176332/security/u-s-cisa-adds-ivanti-connect-secure-policy-secure-and-zta-gateways-flaw-to-its-known-exploited-vulnerabilities-catalog-2.html</a> <a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener" target="_blank">#securityaffairs</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacking</a>

notsecure<a href="https://infosec.exchange/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> has added CVE-2025-31161 to their exploited list.CrushFTP Authentication Bypass Vulnerability: CrushFTP contains an authentication bypass vulnerability in the HTTP authorization header that allows a remote unauthenticated attacker to authenticate to any known or guessable user account (e.g., crushadmin), potentially leading to a full compromise. <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-31161" rel="nofollow noopener" translate="no" target="_blank">https://nvd.nist.gov/vuln/detail/CVE-2025-31161</a>

Infoblox Threat IntelIs the sky fluxxing?! Last week a CISA advisory on DNS Fast Flux created a lot of buzz. We have an insider's take. Fast Flux is a nearly 20 year old technique and is essentially the malicious use of dynamic DNS. It is critical that protective DNS services understand this -- and all other DNS techniques -- on that we agree. What we also know as experts in DNS is that there are many ways to skin a cat, as they say. <a href="https://infosec.exchange/tags/dns" class="mention hashtag" rel="nofollow noopener" target="_blank">#dns</a> <a href="https://infosec.exchange/tags/threatintel" class="mention hashtag" rel="nofollow noopener" target="_blank">#threatintel</a> <a href="https://infosec.exchange/tags/cisa" class="mention hashtag" rel="nofollow noopener" target="_blank">#cisa</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#phishing</a> <a href="https://infosec.exchange/tags/threatintelligence" class="mention hashtag" rel="nofollow noopener" target="_blank">#threatintelligence</a> <a href="https://infosec.exchange/tags/infobloxthreatintel" class="mention hashtag" rel="nofollow noopener" target="_blank">#infobloxthreatintel</a> <a href="https://infosec.exchange/tags/infoblox" class="mention hashtag" rel="nofollow noopener" target="_blank">#infoblox</a> <a href="https://infosec.exchange/tags/cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybercrime</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://blogs.infoblox.com/threat-intelligence/disrupting-fast-flux-and-much-more-with-protective-dns/" rel="nofollow noopener" translate="no" target="_blank">https://blogs.infoblox.com/threat-intelligence/disrupting-fast-flux-and-much-more-with-protective-dns/</a>

Pyrzout :vm:Fast Flux is the New Cyber Weapon—And It’s Hard to Stop, Warns CISA <a href="https://thecyberexpress.com/cisa-nsa-fbi-issue-fast-flux-advisory/" rel="nofollow noopener" translate="no" target="_blank">https://thecyberexpress.com/cisa-nsa-fbi-issue-fast-flux-advisory/</a> <a href="https://social.skynetcloud.site/tags/TheCyberExpressNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#TheCyberExpressNews</a> <a href="https://social.skynetcloud.site/tags/TheCyberExpress" class="mention hashtag" rel="nofollow noopener" target="_blank">#TheCyberExpress</a> <a href="https://social.skynetcloud.site/tags/FirewallDaily" class="mention hashtag" rel="nofollow noopener" target="_blank">#FirewallDaily</a> <a href="https://social.skynetcloud.site/tags/DoubleFlux" class="mention hashtag" rel="nofollow noopener" target="_blank">#DoubleFlux</a> <a href="https://social.skynetcloud.site/tags/SingleFlux" class="mention hashtag" rel="nofollow noopener" target="_blank">#SingleFlux</a> <a href="https://social.skynetcloud.site/tags/CyberNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberNews</a> <a href="https://social.skynetcloud.site/tags/cloaking" class="mention hashtag" rel="nofollow noopener" target="_blank">#cloaking</a> <a href="https://social.skynetcloud.site/tags/FastFlux" class="mention hashtag" rel="nofollow noopener" target="_blank">#FastFlux</a> <a href="https://social.skynetcloud.site/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> <a href="https://social.skynetcloud.site/tags/NCSC" class="mention hashtag" rel="nofollow noopener" target="_blank">#NCSC</a> <a href="https://social.skynetcloud.site/tags/FBI" class="mention hashtag" rel="nofollow noopener" target="_blank">#FBI</a>

Kevin Dominik KorteThe firings at CISA made me wonder what the administration thinks. No one in their right mind would consider it more effective to get hacked than to prevent attacks. Yet, here we are. <a href="https://fosstodon.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://fosstodon.org/tags/cisa" class="mention hashtag" rel="nofollow noopener" target="_blank">#cisa</a> <a href="https://www.nextgov.com/people/2025/04/cisa-make-comprehensive-staff-cuts-coming-days-people-familiar-say/404320/" rel="nofollow noopener" translate="no" target="_blank">https://www.nextgov.com/people/2025/04/cisa-make-comprehensive-staff-cuts-coming-days-people-familiar-say/404320/</a>

flagthisUrgent: CISA adds Apache Tomcat vulnerability (CVE-2025-24813) to KEV catalog; update now! <a href="https://ioc.exchange/tags/ApacheTomcat" class="mention hashtag" rel="nofollow noopener" target="_blank">#ApacheTomcat</a> <a href="https://ioc.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://ioc.exchange/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> More details: <a href="https://securityaffairs.com/176129/security/u-s-cisa-adds-apache-tomcat-flaw-known-exploited-vulnerabilities-catalog.html" rel="nofollow noopener" translate="no" target="_blank">https://securityaffairs.com/176129/security/u-s-cisa-adds-apache-tomcat-flaw-known-exploited-vulnerabilities-catalog.html</a> - <a href="https://www.flagthis.com/news/12398" rel="nofollow noopener" translate="no" target="_blank">https://www.flagthis.com/news/12398</a>

ResearchBuzz: FirehoseCISA: NSA, CISA, FBI, and International Partners Release Cybersecurity Advisory on “Fast Flux,” a National Security Threat. “Today, CISA … released joint Cybersecurity Advisory Fast Flux: A National Security Threat (PDF, 841 KB). This advisory warns organizations, internet service providers (ISPs), and cybersecurity service providers of the ongoing threat of fast flux enabled malicious […]<a href="https://rbfirehose.com/2025/04/05/cisa-nsa-cisa-fbi-and-international-partners-release-cybersecurity-advisory-on-fast-flux-a-national-security-threat/" class="" rel="nofollow noopener" target="_blank">https://rbfirehose.com/2025/04/05/cisa-nsa-cisa-fbi-and-international-partners-release-cybersecurity-advisory-on-fast-flux-a-national-security-threat/</a>

Pyrzout :vm:US, Allies Warn of Threat Actors Using ‘Fast Flux’ to Hide Server Locations – Source: www.securityweek.com <a href="https://ciso2ciso.com/us-allies-warn-of-threat-actors-using-fast-flux-to-hide-server-locations-source-www-securityweek-com/" rel="nofollow noopener" translate="no" target="_blank">https://ciso2ciso.com/us-allies-warn-of-threat-actors-using-fast-flux-to-hide-server-locations-source-www-securityweek-com/</a> <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener" target="_blank">#rssfeedpostgeneratorecho</a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurityNews</a> <a href="https://social.skynetcloud.site/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#Malware</a>&Threats <a href="https://social.skynetcloud.site/tags/securityweekcom" class="mention hashtag" rel="nofollow noopener" target="_blank">#securityweekcom</a> <a href="https://social.skynetcloud.site/tags/securityweek" class="mention hashtag" rel="nofollow noopener" target="_blank">#securityweek</a> <a href="https://social.skynetcloud.site/tags/fastflux" class="mention hashtag" rel="nofollow noopener" target="_blank">#fastflux</a> <a href="https://social.skynetcloud.site/tags/guidance" class="mention hashtag" rel="nofollow noopener" target="_blank">#guidance</a> <a href="https://social.skynetcloud.site/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> <a href="https://social.skynetcloud.site/tags/DNS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DNS</a>

AAKLCIA has updated the KEV catalogue.- CVE-2025-22457: Ivanti Connect Secure, Policy Secure and ZTA Gateways Stack-Based Buffer Overflow Vulnerability <a href="https://www.cve.org/CVERecord?id=CVE-2025-22457" rel="nofollow noopener" translate="no" target="_blank">https://www.cve.org/CVERecord?id=CVE-2025-22457</a> <a href="https://infosec.exchange/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/Ivanti" class="mention hashtag" rel="nofollow noopener" target="_blank">#Ivanti</a>

The New Oil<a href="https://mastodon.thenewoil.org/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> warns of <a href="https://mastodon.thenewoil.org/tags/FastFlux" class="mention hashtag" rel="nofollow noopener" target="_blank">#FastFlux</a> <a href="https://mastodon.thenewoil.org/tags/DNS" class="mention hashtag" rel="nofollow noopener" target="_blank">#DNS</a> evasion used by <a href="https://mastodon.thenewoil.org/tags/cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybercrime</a> gangs<a href="https://www.bleepingcomputer.com/news/security/cisa-warns-of-fast-flux-dns-evasion-used-by-cybercrime-gangs/" rel="nofollow noopener" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/cisa-warns-of-fast-flux-dns-evasion-used-by-cybercrime-gangs/</a><a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a>

Pyrzout :vm:NSA and Global Allies Declare Fast Flux a National Security Threat <a href="https://hackread.com/nsa-allies-fast-flux-a-national-security-threat/" rel="nofollow noopener" translate="no" target="_blank">https://hackread.com/nsa-allies-fast-flux-a-national-security-threat/</a> <a href="https://social.skynetcloud.site/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://social.skynetcloud.site/tags/DoubleFlux" class="mention hashtag" rel="nofollow noopener" target="_blank">#DoubleFlux</a> <a href="https://social.skynetcloud.site/tags/SingleFlux" class="mention hashtag" rel="nofollow noopener" target="_blank">#SingleFlux</a> <a href="https://social.skynetcloud.site/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#Security</a> <a href="https://social.skynetcloud.site/tags/FastFlux" class="mention hashtag" rel="nofollow noopener" target="_blank">#FastFlux</a> <a href="https://social.skynetcloud.site/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> <a href="https://social.skynetcloud.site/tags/NSA" class="mention hashtag" rel="nofollow noopener" target="_blank">#NSA</a>

Geeky Malcölm 🇨🇦🍀🇺🇦<a href="https://ioc.exchange/tags/nsa" class="mention hashtag" rel="nofollow noopener" target="_blank">#nsa</a>, <a href="https://ioc.exchange/tags/cisa" class="mention hashtag" rel="nofollow noopener" target="_blank">#cisa</a>, <a href="https://ioc.exchange/tags/fbi" class="mention hashtag" rel="nofollow noopener" target="_blank">#fbi</a>, and International Partners Release Cybersecurity Advisory on “Fast Flux,” a National Security Threat <a href="https://www.cisa.gov/news-events/alerts/2025/04/03/nsa-cisa-fbi-and-international-partners-release-cybersecurity-advisory-fast-flux-national-security" rel="nofollow noopener" translate="no" target="_blank">https://www.cisa.gov/news-events/alerts/2025/04/03/nsa-cisa-fbi-and-international-partners-release-cybersecurity-advisory-fast-flux-national-security</a>

notsecure<a href="https://infosec.exchange/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> has added CVE-2025-22457 to their exploited list.Ivanti Connect Secure, Policy Secure and ZTA Gateways Stack-Based Buffer Overflow Vulnerability: Ivanti Connect Secure, Policy Secure and ZTA Gateways contains a stack-based buffer overflow vulnerability that allows a remote unauthenticated attacker to achieve remote code execution. <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#infosec</a><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-22457" rel="nofollow noopener" translate="no" target="_blank">https://nvd.nist.gov/vuln/detail/CVE-2025-22457</a>

Pyrzout :vm:NSA and Global Allies Declare Fast Flux a National Security Threat – Source:hackread.com <a href="https://ciso2ciso.com/nsa-and-global-allies-declare-fast-flux-a-national-security-threat-sourcehackread-com/" rel="nofollow noopener" translate="no" target="_blank">https://ciso2ciso.com/nsa-and-global-allies-declare-fast-flux-a-national-security-threat-sourcehackread-com/</a> <a href="https://social.skynetcloud.site/tags/1CyberSecurityNewsPost" class="mention hashtag" rel="nofollow noopener" target="_blank">#1CyberSecurityNewsPost</a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurityNews</a> <a href="https://social.skynetcloud.site/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://social.skynetcloud.site/tags/DoubleFlux" class="mention hashtag" rel="nofollow noopener" target="_blank">#DoubleFlux</a> <a href="https://social.skynetcloud.site/tags/SingleFlux" class="mention hashtag" rel="nofollow noopener" target="_blank">#SingleFlux</a> <a href="https://social.skynetcloud.site/tags/FastFlux" class="mention hashtag" rel="nofollow noopener" target="_blank">#FastFlux</a> <a href="https://social.skynetcloud.site/tags/Hackread" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hackread</a> <a href="https://social.skynetcloud.site/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a> <a href="https://social.skynetcloud.site/tags/CISA" class="mention hashtag" rel="nofollow noopener" target="_blank">#CISA</a> <a href="https://social.skynetcloud.site/tags/NSA" class="mention hashtag" rel="nofollow noopener" target="_blank">#NSA</a>

Recent searches

Search options

Administered by:

Server stats:

#cisa