by Syndicated News Feed | Jul 18, 2025 | IT Security
CrushFTP is warning that threat actors are actively exploiting a zero-day vulnerability tracked as CVE-2025-54309, which allows attackers to gain administrative access via the web interface on vulnerable servers. CrushFTP is an enterprise file transfer server used by...
by Syndicated News Feed | Jul 18, 2025 | IT Security
ChatGPT’s o3 is OpenAI’s best model to date because it features reasoning, and it might get even better in the next update. As spotted on X, OpenAI is testing a new “Alpha” variant of the o3 model, which has significant coding-related...
by Syndicated News Feed | Jul 18, 2025 | IT Security
Analysis WeTransfer this week denied claims it uses files uploaded to its ubiquitous cloud storage service to train AI, and rolled back changes it had introduced to its Terms of Service after they deeply upset users. The topic? Granting licensing permissions for an...
by Syndicated News Feed | Jul 17, 2025 | IT Security
A critical Citrix NetScaler vulnerability, tracked as CVE-2025-5777 and dubbed “CitrixBleed 2,” was actively exploited nearly two weeks before proof-of-concept (PoC) exploits were made public, despite Citrix stating that there was no evidence of attacks....
by Syndicated News Feed | Jul 17, 2025 | IT Security
Google has filed a lawsuit against 25 unnamed individuals in China it accuses of breaking into more than 10 million devices worldwide and using them to build a botnet, called BadBox 2.0, and then to carry out other cybercrimes and fraud. “As of April 2025,...
by Syndicated News Feed | Jul 17, 2025 | IT Security
VMware fixed four vulnerabilities in VMware ESXi, Workstation, Fusion, and Tools that were exploited as zero-days during the Pwn2Own Berlin 2025 hacking contest in May 2025. Three of the patched flaws have a severity rating of 9.3, as they allow programs running in a...
