Rescana Blog
1002 posts | Page 9 of 42
CVE Analysis Center
StackWarp (CVE-2025-29943): Critical SEV-SNP Vulnerability in AMD Zen 1–5 CPUs Exposes Confidential Computing to Privilege Escalation and Key Theft
CVE Analysis Center
Sophisticated Multi-Stage Phishing Attack Exploits Microsoft Windows in Russian Organizations Using Amnesia RAT and Hakuna Matata Ransomware
CVE Analysis Center
Sandworm’s DynoWiper Attack Targeting Polish Combined Heat and Power and Renewable Energy Management Systems: Incident Analysis and Lessons Learned
CVE Analysis Center
Okta SSO Accounts Targeted by Sophisticated Vishing and Adversary-in-the-Middle (AiTM) Phishing Attacks Leading to Data Theft and Extortion
CVE Analysis Center
Konni APT Targets Blockchain Development Environments with AI-Generated PowerShell Malware via Discord Exploits
Technology
ETSI EN 304 223: The New Global Standard for AI Cybersecurity and Supply Chain Risk Management
CVE Analysis Center
CVE-2025-59718/59719: Fortinet FortiCloud SSO Authentication Bypass Actively Exploited on Fully Patched FortiGate Firewalls
CVE Analysis Center
Critical GNU InetUtils telnetd Vulnerability (CVE-2026-24061) Allows Remote Root Access via Authentication Bypass
CVE Analysis Center
Critical Cisco Unified Communications Zero-Day (CVE-2024-20253) Actively Exploited: Millions of Enterprises at Risk
CVE Analysis Center
Comprehensive Analysis of the European Vulnerability Database (EUVD) Launch: Technical Architecture, GCVE Integration, and Cybersecurity Impact
CVE Analysis Center
ATM Jackpotting Attack: Tren de Aragua Gang Exploits Ploutus Malware on Legacy Windows XP ATMs in US, Leading to Multi-State Indictments and Deportations
Active Exploitation Alert
WhisperPair Bluetooth Fast Pair Vulnerability (CVE-2025-36911) Exposes Millions of Audio Accessories to Remote Hijacking, Eavesdropping, and Location Tracking
Active Exploitation Alert
LOTUSLITE Backdoor Targets U.S. Government and Policy Organizations via Venezuela-Themed Spear Phishing: Mustang Panda Cyber-Espionage Campaign Analysis
Active Exploitation Alert
GootLoader Malware Exploits Windows ZIP Handling with 1,000-Part Nested Archives to Evade Detection
Technology
ETSI EN 304 223: Baseline Cybersecurity Standard for AI Models and Systems in Europe
Active Exploitation Alert
CVE-2026-23550: Critical WordPress Modular DS Plugin Vulnerability Actively Exploited for Admin Access
Active Exploitation Alert
Critical XSS Vulnerability in StealC Malware Admin Panel Allows Researchers to Infiltrate and Monitor Threat Actor Operations
Active Exploitation Alert
Critical Fortinet FortiSIEM Vulnerability CVE-2024-23108 Actively Exploited: Risks, Attack Analysis, and Mitigation Steps
Active Exploitation Alert
Critical CVE-2024-20353 Zero-Day Exploited by China-Linked APT Hits Cisco Secure Email Gateway and Secure Email and Web Manager
Active Exploitation Alert
CIRO Data Breach Exposes Sensitive Information of 750,000 Canadian Investors in Major 2025 Cyberattack
Cybersecurity Incident Analysis
Microsoft Disrupts RedVDS: Inside the Takedown of a Global Windows Virtual Server Cybercrime Platform
Cybersecurity Incident Analysis
Kyowon Group Ransomware Attack: Data Exfiltration Impacts Millions in South Korea
Cybersecurity Incident Analysis
Fortinet FortiSIEM Critical CVE-2025-64155 Vulnerability: Unauthenticated Remote Code Execution Exploited in the Wild
Cybersecurity Incident Analysis