Security Boulevard

Top CVEs of December 2025

December 2025 was a brutal reality check for security teams. While most were winding down for the holidays, threat actors weaponized a tectonic shift in the landscape, headlined by the... The post Top ...
financefeeds

Blockchain Bridge Security Vulnerabilities and How to Prevent Billion-Dollar Exploits

Blockchain bridges are essential for enabling interoperability between different blockchain networks, allowing assets and data to move seamlessly across ecosystems. However, these bridges are ...
maketecheasier.com

Why LNK Files in Windows Are a Major Security Vulnerability and How to Stay Safe

Year after year, LNK files are exploited in malware attacks, mainly because a core vulnerability hides malicious content from users. Microsoft has not yet fixed the flaw, so we must be cautious when ...
Infosecurity-magazine.com

Hackers Exploit Critical Flaw in Gladinet's Triofox File Sharing Product

Cyber threat actors have been exploiting a vulnerability in Gladinet’s Triofox, a file-sharing and remote access platform, and chained it with the abuse of the built-in anti-virus feature to achieve ...
aha.org

H-ISAC TLP White Threat Bulletin: POC Exploit Available for the Recent Microsoft Windows ...

In March 2024, a vulnerability in Microsoft Windows Cloud Files Minifilter driver, tracked as CVE-2025-55680 (CVSS score of 7.8), was initially discovered by Exodus Intelligence. This flaw was ...
Forbes

Ongoing Ransomware Attacks Exploit Linux Vulnerability, CISA Warns

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Admit it: the first thing you think of when ransomware is ...
CSOonline

Claude AI vulnerability exposes enterprise data through code interpreter exploit

Security researcher demonstrates how attackers can hijack Anthropic’s file upload API to exfiltrate sensitive information, even with network restrictions enabled. A newly disclosed vulnerability in ...
aha.org

H-ISAC TLP White Vulnerability Bulletin: Microsoft Windows Cloud Files Minifilter Privilege ...

In March 2024, Exodus Intelligence discovered a vulnerability in Microsoft Windows Cloud Files Minifilter driver. The patch for this flaw was recently released, included in Microsoft's October 2025 ...
winbuzzer.com

Microsoft Disables File Explorer Preview for Internet Files to Patch NTLM Vulnerability

Following the October 2025 Patch Tuesday updates, many Windows users began reporting a frustrating issue: the File Explorer preview pane suddenly stopped working for many common file types. In a move ...
SecurityWeek

Gladinet Patches Exploited CentreStack Vulnerability

The unauthenticated local file inclusion bug allows attackers to retrieve the machine key and execute code remotely via a ViewState deserialization issue. Gladinet this week released patches for a ...
Bleeping Computer

Oracle silently fixes zero-day exploit leaked by ShinyHunters

Oracle has silently fixed an Oracle E-Business Suite vulnerability (CVE-2025-61884) that was actively exploited to breach servers, with a proof-of-concept exploit publicly leaked by the ShinyHunters ...
CSOonline

Gladinet file sharing zero-day brings patched flaw back from the dead

Criminals have been spotted exploiting a new zero-day vulnerability in Gladinet CentreStack and Triofox file sharing servers that could allow them to re-create the conditions of an earlier flaw ...