SmarterTools recently confirmed that the Warlock (aka Storm-2603) ransomware group breached its network by exploiting an unpatched SmarterMail instance via CVE-2026-24423. The incident underscores a growing security concern:...
How Known-Exploited SonicWall Vulnerabilities Enable Large-Scale Breaches
The recent breach involving Marquis Software Solutions, affecting 74 U.S. banks and...
Ridge Security’s Immediate Response to React2Shell
CISA has added CVE-2025-55182 to its Known Exploited Vulnerabilities (KEV) Catalog, an urgent...
Stop Active Oracle EBS Exploitation
Ridge Security’s Immediate Response CISA has recently added two critical vulnerabilities,...
Fortra GoAnywhere MFT: Deserialization Flaw Opens the Door to Remote Code Execution (CVE-2025-10035)
In September 2025, security researchers warned of CVE-2025-10035, a critical remote code execution...
Browser-to-Backdoor: CVE-2025-49596 Turned Anthropic’s MCP Developer Tools Into Attack Vectors
In July 2025, security researchers uncovered CVE-2025-49596, a critical remote code execution...
Threat Analysis: Unpacking the “ToolShell” Zero-Day in Microsoft SharePoint
In July 2025, multiple critical vulnerabilities collectively known as “ToolShell” and tracked as...