Introduction: what is CVE-2025-20352? CVE-2025-20352 is a stack overflow in the SNMP subsystem of Cisco IOS and IOS XE. Under specific conditions, it lets an attacker crash devices (DoS) or—if they already have higher privileges—execute code as root on affected…

Introduction: what happened and why it matters F5 disclosed that a nation-state actor maintained long-term persistence in parts of its network and exfiltrated files, including portions of BIG-IP source code and non-public vulnerability information. In response, multiple governments issued urgent…

Introduction: what was compromised and by whom Dairy Farmers of America (DFA)—a Kansas-based, farmer-owned cooperative—confirmed a June cyberattack that exposed personal data of employees and cooperative members. Breach notices filed with Maine’s attorney general list 4,546 affected individuals and enumerate…

Introduction: What’s affected and why it matters Multiple memory-corruption flaws in Fuji Electric’s V-SFT—the Windows-based configuration software used to program MONITOUCH HMI panels—can be abused via a malicious project file to achieve arbitrary code execution on the engineer/operator workstation. Successful…

Introduction: what happened and what data was exposed Sotheby’s has disclosed a data security incident after detecting on July 24, 2025 that “certain Sotheby’s data appeared to have been removed” from its environment by an unknown actor. A subsequent review—completed…

Introduction: what happened Gladinet has released security updates for its CentreStack file-sharing platform (and Triofox) to fix an actively exploited local file inclusion (LFI) vulnerability tracked as CVE-2025-11371. Attackers were abusing this flaw in the wild to read Web.config, recover…

Introduction: what happened at Prosper Prosper—one of the earliest U.S. peer-to-peer lending platforms—disclosed a cybersecurity incident identified on September 1, 2025. Subsequent reporting and regulator disclosures indicate an unauthorized party accessed systems holding proprietary and confidential information. Have I Been…

Introduction: what’s the problem? CISA has added CVE-2025-54253—a maximum-severity (CVSS 10.0) flaw in Adobe Experience Manager (AEM) Forms on JEE—to its Known Exploited Vulnerabilities (KEV) catalog, confirming active exploitation. Adobe fixed the issue with an out-of-band update in early August…

Introduction: the problem and definition Google’s Threat Intelligence Group (GTIG) reports that a North Korea–linked threat cluster tracked as UNC5342 has adopted “EtherHiding”—a technique that stores malicious code and control data inside smart contracts on public blockchains (notably Ethereum and…