Rescana Blog
986 posts | Page 13 of 42
CVE Analysis Center
Critical Apache Tika CVE-2025-66516: XXE Vulnerability Exposes Over 500 Instances After Incomplete Patch
Active Exploitation Alert
Zero-Click Vulnerability in Perplexity Comet Browser Allows Full Google Drive Deletion via Crafted Emails
Active Exploitation Alert
ShadowMQ Vulnerabilities: Over 30 Critical Flaws in Meta Llama, NVIDIA TensorRT-LLM, vLLM, and Other AI Inference Engines Enable Data Theft and Remote Code Execution
Active Exploitation Alert
React2Shell (CVE-2025-55182): Mass Exploitation of React Server Components and Next.js Threatens 77,000 Systems and 30+ Organizations
Active Exploitation Alert
Critical XXE Vulnerability CVE-2025-66516 (CVSS 10.0) in Apache Tika Enables File Disclosure, SSRF, and Remote Code Execution – Immediate Patch Required
Active Exploitation Alert
Barts Health NHS Data Breach: Cl0p Ransomware Exploits Oracle E-Business Suite Zero-Day (CVE-2025-61882)
Cybersecurity Incident Analysis
University of Pennsylvania Data Breach: Oracle E-Business Suite (CVE-2025-61882) Exploit by Clop Ransomware Group
CVE Analysis Center
ShadyPanda Browser Extension Attack: 4.3 Million Chrome and Edge Users Compromised in Multi-Year Supply Chain Campaign
Cybersecurity Incident Analysis
Operation RedDirection: Over 2 Million Users Compromised by Malicious Chrome and Edge Extensions in Major Supply-Chain Attack
CVE Analysis Center
Marquis Software Solutions Data Breach: SonicWall Vulnerability Exposes Sensitive Data of 74+ US Banks and Credit Unions
CVE Analysis Center
Malicious Rust Crate evm-units Targets Web3 Developers with OS-Specific Malware via crates.io Supply Chain Attack
CVE Analysis Center
Leroy Merlin France Loyalty Program Data Breach: December 2025 Security Incident Analysis and Technical Report
Cybersecurity Incident Analysis
Google Patches Critical Zero-Day Vulnerabilities CVE-2025-48633 and CVE-2025-48572 in Android 13-16 – December 2025 Security Update Analysis
CVE Analysis Center
CVE-2025-55182: Critical Remote Code Execution Vulnerability in React Server Components and Next.js – Urgent Patch Required
CVE Analysis Center
Critical React2shell Vulnerability (CVE-2025-55182, CVE-2025-66478) Enables Unauthenticated RCE in React Server Components and Next.js
Cybersecurity Incident Analysis
Critical Command Injection Vulnerability in OpenAI Codex CLI Threatens Developer Endpoints and Supply Chain Security
CVE Analysis Center
CISA Issues Urgent Alert on ScadaBR CVE-2021-26829 Vulnerability Exploited by Hacktivists in ICS Attack
CVE Analysis Center
Albiriox Malware-as-a-Service: Advanced Android Threat Targets Over 400 Banking, Fintech, and Crypto Apps with On-Device Fraud and VNC Screen Control
Cybersecurity Incident Analysis
North Korean APT Exploits npm Supply Chain to Distribute OtterCookie Malware via 197 Malicious Packages
Cybersecurity Incident Analysis
French Soccer Federation Club Administrative Management Software Breach: Member Data Stolen in Credential Compromise Cyberattack
Cybersecurity Incident Analysis
Asahi Group Holdings Ransomware Attack: Qilin Breach Disrupts Japanese Operations and Exposes 1.5 Million Records
Cybersecurity Incident Analysis
Qilin Ransomware Exploits South Korean MSP Breach in Korean Leaks Attack, Impacting 28 Financial Organizations
Cybersecurity Incident Analysis
OpenAI API User Data Exposed in Mixpanel Security Breach: Incident Analysis and Impact Report
Cybersecurity Incident Analysis