July 21, 2025
Chinese Hackers Attack via Ivanti and Fortinet VPNs
Targeted attacks on Japanese organizations were carried out through already known vulnerabilities in Ivanti and Fortinet VPN systems. The campaigns once again demonstrate how critical unpatched systems can be in production environments.
Microsoft Closes 137 Security Flaws – Including a Zero-Day
As part of the July Patch Tuesdays, a total of 137 vulnerabilities were fixed, including an actively exploited remote code execution flaw in SQL Server. Security administrators should implement the updates immediately.
Diskstation Ransomware Group Disbanded
An international law enforcement operation has stopped a criminal group that infected Synology NAS systems worldwide with ransomware. The gang specifically targeted poorly secured network storage solutions in businesses.
Google Chrome Affected by Zero-Day (CVE-2025-6558)
A critical vulnerability in Chrome's GPU component is being actively exploited. It may allow for breakout from the sandbox. Google has responded quickly – users should update immediately to version 138.0.7204.157 or .158.
Wing FTP Server: Remote Code Execution via CVE-2025-47812
A null byte vulnerability in Wing FTP Server allows attackers to inject code – in the worst case, the entire server can be compromised. This gap is already being actively exploited.
