April 2025 – Page 6 – TheCyberThrone

CISA adds Ivanti Connect Secure to KEV Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in Ivanti Connect Secure to its Known Exploited Vulnerabilities (KEV) Catalog. This vulnerability, identified as CVE-2025-22457, is a…

PravinKarthik April 5, 2025

Australian Superannuation Data Breach

The recent Australian superannuation data breach is a major cybersecurity incident targeting multiple superannuation funds. It has caused widespread concern about the safety of retirement savings and exposed weaknesses in…

PravinKarthik April 4, 2025

Chinese UNC5221 Exploitation of Ivanti Connect Secure

UNC5221 is an advanced and highly sophisticated espionage group believed to have ties to China. This group has demonstrated significant expertise in targeting edge devices and exploiting critical vulnerabilities to…

PravinKarthik April 4, 2025

RolandSkimmer Malware Detailed Out

RolandSkimmer is a highly sophisticated malware campaign designed specifically to steal credit card data. By combining web-based skimming techniques with advanced obfuscation methods, this malware poses a significant threat to…

PravinKarthik April 3, 2025

CVE-2025-1268: Critical Vulnerability in Canon Printer Drivers

CVE-2025-1268 is a serious security vulnerability affecting multiple Canon printer drivers, primarily used in production printers, multifunction devices, and laser printers. This vulnerability has raised significant concerns due to its…

PravinKarthik April 2, 2025

Apple Backported Three Vulnerabilities

Apple recently backported fixes for three actively exploited vulnerabilities to older devices and operating system versions. 1. CVE-2025-24085: Core Media Privilege Escalation Description:CVE-2025-24085 is a use-after-free vulnerability that exists within…

PravinKarthik April 2, 2025

CVE-2024-20439 added to CISA KEV Catalog

CVE-2024-20439 is a critical vulnerability affecting Cisco Smart Licensing Utility (CSLU), classified with a CVSS score of 9.8 (Critical). It represents a major security risk, as it allows unauthorized access…

PravinKarthik April 1, 2025