Cloud Security

SSRF vulnerabilities

Over 400 IPs Exploiting Multiple SSRF Vulnerabilities in Coordinated Cyber Attack

A coordinated cyberattack involving over 400 IP addresses is exploiting multiple Server-Side Request Forgery (SSRF) vulnerabilities across various platforms, including critical infrastructure and cloud services. This sophisticated campaign, detected by GreyNoise, aims to map internal networks, steal cloud credentials, and gain unauthorized access. The attacks leverage known CVEs and unlisted vulnerabilities in software like DotNetNuke, Zimbra, VMware, and GitLab. Organizations are advised to apply security patches, implement network controls, secure cloud metadata, monitor for suspicious activity, and validate user inputs to mitigate these significant risks. ... Read More
VMware ESXi zero-day vulnerability

37K+ VMware ESXi Instances at Risk: Critical Zero-Day Vulnerabilities Disclosed – Urgent Patch Required!

Broadcom disclosed three critical zero-day vulnerabilities in VMware ESXi, Workstation, and Fusion in March 2025, which are being actively exploited and could grant attackers significant control over affected systems. These flaws, including a TOCTOU vulnerability and privilege escalation risks, impact tens of thousands of unpatched ESXi instances globally, necessitating immediate patching. Challenges in obtaining patches through Broadcom's portal exist for some users, emphasizing the need for alternative methods and proactive security measures. Organizations are urged to apply patches, restrict administrative access, and monitor for suspicious activity, with companies like Technijian offering assistance in securing VMware environments against these threats. The vulnerabilities underscore the importance of vigilance and timely updates to mitigate serious security risks. ... Read More
Otelier data breach exposes hotel reservations and personal information

Otelier Data Breach Exposes Hotel Reservations of Millions

A massive data breach at Otelier, a hotel management platform, exposed nearly eight terabytes of sensitive data from major hotel chains like Marriott and Hilton, impacting millions of guests. Hackers exploited compromised employee credentials to access and download guest information, reservations, and internal data from Otelier's cloud storage. The breach highlights significant cybersecurity vulnerabilities in cloud-based systems and the importance of strong security measures, including multi-factor authentication and employee training. Experts warn of increased risks of phishing attacks targeting affected guests. The incident underscores the need for proactive cybersecurity strategies to mitigate future data breaches. ... Read More
Gravy Analytics data breach

A Breach of Gravy Analytics’ Location Data Threatens the Privacy of Millions

A massive data breach at Gravy Analytics, a location data broker, exposed the location data of millions of users from various apps. The breach, exploited via a misappropriated Amazon key, leaked sensitive information including locations near the White House and Kremlin. This highlights the risks of data collection by brokers and the lack of transparency in their practices. The article also emphasizes the importance of individual privacy protections, such as adjusting app permissions and using ad-blockers, and offers cybersecurity solutions to mitigate future threats. Gravy Analytics' response included temporarily suspending operations and notifying authorities. Experts warn of the significant privacy implications, especially for vulnerable groups. ... Read More
Fortinet data breach

Fortinet Confirms Data Breach After 440GB Hack

In a concerning development for the cybersecurity world, Fortinet, one of the largest cybersecurity companies globally, has confirmed that it recently suffered a data breach. This confirmation follows claims by a hacker who said they had stolen a massive 440GB of data from the company’s Microsoft SharePoint server. ... Read More