Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors

12/08/2025 CyberGeek 0 Comments 0 tags

The Dutch National Cyber Security Centre (NCSC-NL) has warned of cyber attacks exploiting a recently disclosed critical security flaw impacting Citrix NetScaler ADC products to breach organizations in the country.

Read More

New TETRA Radio Encryption Flaws Expose Law Enforcement Communications

11/08/2025 CyberGeek 0 Comments 0 tags

Cybersecurity researchers have discovered a fresh set of security issues in the Terrestrial Trunked Radio (TETRA) communications protocol, including in its proprietary end-to-end encryption (E2EE) mechanism that exposes the system

Read More

Researchers Spot Surge in Erlang/OTP SSH RCE Exploits, 70% Target OT Firewalls

11/08/2025 CyberGeek 0 Comments 0 tags

Malicious actors have been observed exploiting a now-patched critical security flaw impacting Erlang/Open Telecom Platform (OTP) SSH as early as beginning of May 2025, with about 70% of detections originating

Read More

⚡ Weekly Recap: BadCam Attack, WinRAR 0-Day, EDR Killer, NVIDIA Flaws, Ransomware Attacks & More

11/08/2025 CyberGeek 0 Comments 0 tags

This week, cyber attackers are moving quickly, and businesses need to stay alert. They’re finding new weaknesses in popular software and coming up with clever ways to get around security.

Read More

6 Lessons Learned: Focusing Security Where Business Value Lives

11/08/2025 CyberGeek 0 Comments 0 tags

The Evolution of Exposure Management Most security teams have a good sense of what’s critical in their environment. What’s harder to pin down is what’s business-critical. These are the assets

Read More

WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately

11/08/2025 CyberGeek 0 Comments 0 tags

The maintainers of the WinRAR file archiving utility have released an update to address an actively exploited zero-day vulnerability. Tracked as CVE-2025-8088 (CVSS score: 8.8), the issue has been described

Read More

New Win-DDoS Flaws Let Attackers Turn Public Domain Controllers into DDoS Botnet via RPC, LDAP

10/08/2025 CyberGeek 0 Comments 0 tags

A novel attack technique could be weaponized to rope thousands of public domain controllers (DCs) around the world to create a malicious botnet and use it to conduct power distributed

Read More

Researchers Detail Windows EPM Poisoning Exploit Chain Leading to Domain Privilege Escalation

10/08/2025 CyberGeek 0 Comments 0 tags

Cybersecurity researchers have presented new findings related to a now-patched security issue in Microsoft’s Windows Remote Procedure Call (RPC) communication protocol that could be abused by an attacker to conduct

Read More

Researchers Reveal ReVault Attack Targeting Dell ControlVault3 Firmware in 100+ Laptop Models

10/08/2025 CyberGeek 0 Comments 0 tags

Cybersecurity researchers have uncovered multiple security flaws in Dell’s ControlVault3 firmware and its associated Windows APIs that could have been abused by attackers to bypass Windows login, extract cryptographic keys,

Read More

Linux-Based Lenovo Webcams’ Flaw Can Be Remotely Exploited for BadUSB Attacks

09/08/2025 CyberGeek 0 Comments 0 tags

Cybersecurity researchers have disclosed vulnerabilities in select model webcams from Lenovo that could turn them into BadUSB attack devices. “This allows remote attackers to inject keystrokes covertly and launch attacks

Read More