ArcGIS Archives • Daily CyberSecurity

Critical ArcGIS Account Recovery Targeted in Active Attacks Illustration of ArcGIS Account Recovery attacks highlighted in the latest security bulletin

Illustration of ArcGIS Account Recovery attacks highlighted in the latest security bulletin

Critical ArcGIS Account Recovery Targeted in Active Attacks

Do Son June 20, 2026

Cybercriminals are actively exploiting ArcGIS Account Recovery configurations to penetrate customer environments. Esri confirms these targeted attempts...

Critical 9.8 CVSS Flaws Hit ArcGIS Infrastructure

Do Son April 23, 2026

Esri has issued an urgent security bulletin regarding two critical vulnerabilities affecting developer credentials within ArcGIS Online,...

China-Backed Flax Typhoon APT Maintained Year-Long Access by Turning ArcGIS SOE into Web Shell Backdoor Flax Typhoon ArcGIS Backdoor, SOE Web Shell

Flax Typhoon ArcGIS Backdoor, SOE Web Shell

China-Backed Flax Typhoon APT Maintained Year-Long Access by Turning ArcGIS SOE into Web Shell Backdoor

Do Son October 16, 2025

A newly released report from ReliaQuest reveals how the China-backed advanced persistent threat (APT) group “Flax Typhoon”...

Critical SSRF Flaw in Esri Portal for ArcGIS Exposes Internal Networks Esri ArcGIS, SSRF Vulnerability

Critical SSRF Flaw in Esri Portal for ArcGIS Exposes Internal Networks

Do Son June 2, 2025

Esri has issued a critical security patch for its widely used Portal for ArcGIS software, addressing a...

Critical Alert 1 Active Exploit Detected Today

Critical ArcGIS Account Recovery Targeted in Active Attacks

Critical 9.8 CVSS Flaws Hit ArcGIS Infrastructure

China-Backed Flax Typhoon APT Maintained Year-Long Access by Turning ArcGIS SOE into Web Shell Backdoor

Critical SSRF Flaw in Esri Portal for ArcGIS Exposes Internal Networks