by Jonathan R. Brennan, CISSP | Mar 20, 2025 | Bulletins
A critical vulnerability—CVE-2025-24472—has surfaced in Fortinet’s FortiOS and FortiProxy systems, drawing immediate concern from cybersecurity agencies. The flaw, which boasts a CVSS score of 8.1, allows remote attackers to gain super-admin privileges via crafted...
by Jonathan R. Brennan, CISSP | Mar 18, 2025 | Bulletins
Subhead: Security researchers crack a flaw in Akira’s Linux variant, but businesses can’t afford to relax just yet. Breaking Down the Akira Ransomware Threat Akira ransomware has been hitting targets hard since March 2023. As a Ransomware-as-a-Service (RaaS)...
by Jonathan R. Brennan, CISSP | Mar 17, 2025 | Bulletins
EXPLOITED in 30 HOURS. Critical RCE flaw in Apache Tomcat leads to RCE A new vulnerability in Apache Tomcat is being actively exploited—here’s what you need to know. The Short Version: If you’re running Apache Tomcat, you need to take action. A newly disclosed path...
by Jonathan R. Brennan, CISSP | Mar 16, 2025 | Bulletins
Cisco IOS XR Vulnerability (CVE-2025-20115): A BGP Crash Course You Didn’t Want A Single Packet Can Wreck Your Network—Here’s How to Stop It. Cisco just dropped an advisory on CVE-2025-20115, a high-severity memory corruption vulnerability in Cisco IOS XR software....
