11Articles
6Categories
2025-03-18Date
🚨 CISA KEV 2[−]
18 Mar KEVCISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2025-24472 Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability CVE-2025-30066 tj-actions/changed-files GitHub Action Embedde…CISA.GOV
18 Mar KEVSupply Chain Compromise of Third-Party tj-actions/changed-files (CVE-2025-30066) and reviewdog/action-setup@v1 (CVE-2025-30154)A popular third-party GitHub Action, tj-actions/changed-files (tracked as CVE-2025-30066 ), was compromised. tj-actions/changed-files is designed to detect which files have changed in a pull request or commit. The supply chain compromise allows for information disclosure of secre…CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 4[−]
18 MarA Vulnerability in Apache Tomcat Could Allow for Remote Code ExecutionA vulnerability has been discovered in Apache Tomcat, which could allow for remote code execution. Apache Tomcat is an open-source Java servlet container and web server used to host Java-based web applications and implement Java Servlet and JavaServer Pages (JSP) specifications, …CISECURITY.ORG
18 Mar156: Kill ListThe dark web is full of mystery. Some of it’s just made up though. Chris Monteiro wanted to see what was real and fake and discovered a hitman for hire site which took him on an unbelievable journey. Chris Monteiro Twitter: x.com/Deku_shrub , Website: https://pirate.london/ Carl …DARKNETDIARIES.COM
18 MarCISA Releases Seven Industrial Control Systems AdvisoriesCISA released seven Industrial Control Systems (ICS) advisories on March 18, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-077-01 Schneider Electric EcoStruxure Power Automation System User …CISA.GOV
18 MarZDI-CAN-25373: Windows Shortcut Exploit Abused as Zero-Day in Widespread APT CampaignsTrend Zero Day Initiative™ (ZDI) uncovered both state-sponsored and cybercriminal groups extensively exploiting ZDI-CAN-25373 (aka ZDI-25-148), a Windows .lnk file vulnerability that enables hidden command execution.TRENDMICRO.COM
📢 SECURITY ADVISORIES 1[−]
🕵️ THREAT INTELLIGENCE 2[−]
18 MarSOC and Awe — How Autonomous Security Is Changing the GameLearn how AI and cloud-native detection are revolutionizing SOCs into autonomous security ops. Clay Brothers of Unit 42 warns against traditional methods. The post SOC and Awe — How Autonomous Security Is Changing the Game appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
18 MarDarknet Diaries Ep 156: Kill Listsubmitted by ashar to security_cpe 10 points | 0 comments https://darknetdiaries.com/episode/156/ Darknet Diaries Ep 156: Kill List The dark web is full of mystery. Some of it’s just made up though. Chris Monteiro wanted to see what was real and fake and discovered a hitman for h…INFOSEC.PUB
🌐 CYBER THREAT LANDSCAPE 1[−]
18 MarOperation AkaiRyū: MirrorFace invites Europe to Expo 2025 and revives ANEL backdoorESET researchers uncovered MirrorFace activity that expanded beyond its usual focus on Japan and targeted a Central European diplomatic institute with the ANEL backdoorWELIVESECURITY.COM
📡 INFOSEC NEWS 1[−]
18 MarMirrorFace updates toolset, expands targeting to EuropeThe group's Operation AkaiRyū begins with targeted spearphishing emails that use the upcoming World Expo 2025 in Osaka, Japan, as a lureWELIVESECURITY.COM