CYBER Threat Intelligence Reports
LATEST CTIs
Malicious npm Packages Target Developers with Multi-OS Info-Stealer Payloads
A new software supply-chain attack has been uncovered involving ten malicious npm packages designed to steal developer credentials across Windows, macOS, and Linux systems. These…
Read more >
CVE-2025-59287: WSUS Remote Code Execution
CVE-2025-59287 is a critical remote code execution (RCE) vulnerability in the Windows Server Update Services (WSUS) role. An attacker who can reach a WSUS server…
Read more >
CVE-2025-33073: Windows SMB Client Improper Access Control Added to CISA’s KEV
CVE-2025-33073 is a high-severity vulnerability in the Windows SMB client that enables an authenticated remote attacker to escalate privileges to NT AUTHORITY\SYSTEM by abusing a…
Read more >
F5 Breach: Source Code & Vulnerabilities Stolen by Nation-State Actor
In August 2025, U.S. cybersecurity vendor F5 Networks uncovered a long-term intrusion by a nation-state-linked threat actor that compromised its BIG-IP product development and engineering…
Read more >
CVE-2025-41244: Chinese Threat Actors Actively Exploiting VMware Tools & Aria Vulnerability
CVE-2025-41244 (CVSS 7.8) is a local privilege escalation vulnerability in VMware Tools and VMware Aria Operations when the Service Discovery Management Pack (SDMP) is enabled.…
Read more >
CVE-2025-32463: Critical Sudo Privilege Escalation
CVE-2025-32463 is a critical local privilege escalation in the ubiquitous sudo utility. The bug allows a local user to escalate to root by abusing sudo’s…
Read more >
