H-ISAC: White Reports
On October 23, 2025, Microsoft issued an out-of-band (OOB) security update for a critical-severity Remote Code Execution (RCE) vulnerability, tracked as CVE-2025-59287.
H-ISAC TLP White: Daily Cyber Headlines for - October 23, 2025
On October 21, 2025, TP-Link issued a security advisory regarding multiple firmware versions of its Omada gateway devices to address two high-severity command injection flaws, CVE-2025-6542 and CVE-2025-6541.
On October 21, 2025, TP-Link issued a security advisory regarding multiple firmware versions of its Omada gateway devices to address two high-severity command injection flaws, CVE-2025-6542 and CVE-2025-6541.
H-ISAC TLP White: Daily Cyber Headlines for - October 22, 2025.
H-ISAC TLP White: Daily Cyber Headlines for October 21, 2025.
H-ISAC TLP White: Daily Cyber Headlines for October 20, 2025.
On October 16, 2025, ConnectWise released a security update to address two high-severity vulnerabilities, CVE-2025-11492 and CVE-2025-11493, that could enable adversary-in-the-middle (AiTM) attacks.
H-ISAC TLP White: Daily Cyber Headlines for October 17, 2025
On October 15, 2025, Trend Micro disclosed an active attack campaign, dubbed Operation ZeroDisco, exploiting two vulnerabilities in older, unpatched Cisco devices.