ToolShell: Exposing Five Major Vulnerabilities in Microsoft SharePoint
A global campaign targeting on-premise Microsoft SharePoint servers has exposed a critical chain of vulnerabilities, collectively codenamed “ToolShell,” which are being leveraged in active...
Chinese Hackers Leverage Software Vulnerabilities to Compromise Targeted Systems
China’s evolving cybersecurity regulations are reshaping the global landscape for software vulnerability disclosure, dramatically expanding state control over newly discovered flaws.
Under the “Regulations...
UNC3886 Cybercriminals Exploit 0-Day Flaws to Attack Singapore’s Critical Infrastructure
Singapore’s critical infrastructure is under active cyberattack from UNC3886, a covert threat group linked to Chinese state-backed cyber-espionage operations.
Sector-wide alerts have been issued...
Fire Ant Hackers Exploit VMware ESXi and vCenter Vulnerabilities to Breach Organizations
A newly uncovered cyber espionage campaign, tracked since early 2025 by Sygnia’s incident response teams and dubbed “Fire Ant,” is targeting enterprise virtualization and...
SonicWall SMA 100 Vulnerabilities Allow Arbitrary JavaScript Code Execution
SonicWall has released security patches to address three serious vulnerabilities affecting its SMA100 series SSL-VPN appliances, including two buffer overflow flaws that could potentially...
