On July 7, 2025, a critical vulnerability in Wing FTP Server was actively exploited in the wild. Identified as CVE-2025-47812 and carrying a maximum CVSS score of 10.0, the flaw allows unauthenticated attackers to execute arbitrary system commands through the product’s web interface. Security researcher Julien Ahrens discovered the issue, which originates from improper null… Read More »Wing FTP Server Vulnerability (CVE-2025-47812)
On July 7, 2025, Ingram Micro, one of the world’s largest IT distribution companies, suffered a major ransomware attack, leading to global service disruptions. The company was forced to disconnect affected systems and halt operations temporarily to contain the breach. Services were restored by July 10, 2025, but the ripple effects impacted partners and customers across the supply chain.… Read More »Ingram Micro Ransomware Attack: Strengthening Supply Chain Risk Assessment
The week of July 2-10, 2025 witnessed significant escalation in cybersecurity threats with multiple critical incidents affecting major organizations globally. The period was marked by sophisticated ransomware attacks targeting critical infrastructure, critical zero-day vulnerabilities under active exploitation, and emergence of new APT campaigns targeting government entities. Key developments include the SafePay ransomware attack on global… Read More »Weekly Report: New Hacking Techniques and Critical CVEs July 2-10, 2025
Table of Contents What is Continuous Vulnerability Management (CVM)? The Importance of Continuous Vulnerability Management Best Practices for Implementing CVM Developing a CVM Policy Continuous Monitoring and Assessment Integration with DevSecOps The Downsides of Traditional CVM Tools Alerts and False Positives Lack of Focus on Exploitables FireCompass: A Solution to CVM Challenges Reducing False Positives… Read More »What is Continuous Vulnerability Management (CVM)?