Data Leak Outs Students of Iran’s MOIS Training Academy

Blog

Byadmblake October 30, 2025

A school for the Iranian state hackers of tomorrow has itself, ironically, been hacked.

Blog

Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks

Apple on Tuesday released a security update to address a zero-day flaw that it said has been exploited in “extremely sophisticated” attacks. The vulnerability has been assigned the CVE identifier CVE-2025-24201 and is rooted in the WebKit web browser engine component. It has been described as an out-of-bounds write issue that could allow an attacker…

Read More Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks
Blog

CISA Warns 2 SonicWall Vulnerabilities Under Active Exploitation

The vulnerabilities affect SonicWall’s SMA devices for secure remote access, which have been heavily targeted by threat actors in the past.

Read More CISA Warns 2 SonicWall Vulnerabilities Under Active Exploitation
Blog

The CISO-COO Partnership: Protecting Operational Excellence

Digital transformation has made cybersecurity preparation part of operational resilience for most organizations. This calls for a new relationship between CISO and COO.

Read More The CISO-COO Partnership: Protecting Operational Excellence
Blog

Webinar: What the Next Wave of AI Cyberattacks Will Look Like — And How to Survive

The AI revolution isn’t coming. It’s already here. From copilots that write our emails to autonomous agents that can take action without us lifting a finger, AI is transforming how we work. But here’s the uncomfortable truth: Attackers are evolving just as fast. Every leap forward in AI gives bad actors new tools — deepfake…

Read More Webinar: What the Next Wave of AI Cyberattacks Will Look Like — And How to Survive
Blog

Oracle Identity Manager Pre-Auth RCE

What is the Vulnerability? CVE-2025-61757 is a critical pre-authentication remote code execution vulnerability in Oracle Identity Manager’s REST WebServices. This vulnerability allows an unauthenticated attacker to exploit URI and matrix parameter parsing weaknesses to bypass authentication and execute arbitrary code over HTTP. Successful exploitation results in full compromise of Identity Manager servers- enabling attackers to…

Read More Oracle Identity Manager Pre-Auth RCE
Blog

SAP S/4HANA Critical Vulnerability CVE-2025-42957 Exploited in the Wild

A critical security vulnerability impacting SAP S/4HANA, an Enterprise Resource Planning (ERP) software, has come under active exploitation in the wild. The command injection vulnerability, tracked as CVE-2025-42957 (CVSS score: 9.9), was fixed by SAP as part of its monthly updates last month. “SAP S/4HANA allows an attacker with user privileges to exploit a vulnerability…

Read More SAP S/4HANA Critical Vulnerability CVE-2025-42957 Exploited in the Wild

Related