Remote Access Archives • Page 2 of 2 • Daily CyberSecurity

CVE-2025-6561 (CVSS 9.8): Hunt Electronic DVR Vulnerability Exposes Admin Credentials in Plaintext F5 BIG-IP Hunt Electronic DVR, Critical Vulnerability

F5 BIG-IP Hunt Electronic DVR, Critical Vulnerability

CVE-2025-6561 (CVSS 9.8): Hunt Electronic DVR Vulnerability Exposes Admin Credentials in Plaintext

Do Son June 27, 2025

Security researchers have uncovered a critical vulnerability—CVE-2025-6561, carrying a CVSS score of 9.8—that affects certain hybrid DVR...

EvilConwi: Hackers Abuse Signed ConnectWise Installers to Launch Stealth Remote Access Attacks

Do Son June 24, 2025

Threat actors have begun weaponizing legitimately signed ConnectWise ScreenConnect installers, hijacking the trust of signed software to...

SHOE RACK Malware: NCSC Uncovers Stealthy Reverse SSH & DoH Post-Exploitation Tool Targeting FortiGate Firewalls SHOE RACK Malware, Reverse SSH

SHOE RACK Malware: NCSC Uncovers Stealthy Reverse SSH & DoH Post-Exploitation Tool Targeting FortiGate Firewalls

Do Son June 24, 2025

A new malware tool dubbed SHOE RACK has come under the microscope of the UK’s National Cyber...

Critical ANPR Camera Flaw (CVE-2025-34022, CVSS 9.3) Exposes Selea TARGA Devices, PoC Available, No Vendor Response ANPR Camera, Path Traversal

Critical ANPR Camera Flaw (CVE-2025-34022, CVSS 9.3) Exposes Selea TARGA Devices, PoC Available, No Vendor Response

Do Son June 22, 2025

Gjoko Krstic of Zero Science Lab has uncovered a critical path traversal vulnerability in Selea’s TARGA series...

Critical Versa Director Flaw (CVSS 9.8): Hardcoded Credentials Grant Root Access, PoC Available Versa Director, Default Credentials

Critical Versa Director Flaw (CVSS 9.8): Hardcoded Credentials Grant Root Access, PoC Available

Do Son June 19, 2025

A newly disclosed critical vulnerability in Versa Director, a centralized network and security management platform, may allow...

Kimsuky APT Group Abuses HWP and AnyDesk for Covert Remote Surveillance

Do Son June 18, 2025

The North Korean threat actor Kimsuky has been spotted deploying yet another advanced phishing campaign—this time leveraging...

Critical Teleport Flaw (CVSS 9.8): Remote Authentication Bypass Threatens Infrastructure Access Teleport Vulnerability, Remote Authentication Bypass

Teleport Vulnerability, Remote Authentication Bypass

Critical Teleport Flaw (CVSS 9.8): Remote Authentication Bypass Threatens Infrastructure Access

Do Son June 17, 2025

Teleport, a leading platform for secure infrastructure access, has disclosed a critical remote authentication bypass vulnerability—tracked as...

Industrial Alert: AutomationDirect MB-Gateway Flaw Rated CVSS 10, No Software Fix MB-Gateway vulnerability, OT security

Industrial Alert: AutomationDirect MB-Gateway Flaw Rated CVSS 10, No Software Fix

Do Son May 22, 2025

In a newly disclosed advisory, the Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert...

Legitimate Remote Tools Weaponized in Sophisticated Spam Campaign RMM abuse, Brazil spam

Legitimate Remote Tools Weaponized in Sophisticated Spam Campaign

Do Son May 12, 2025

In a newly published threat report, Cisco Talos has revealed an ongoing spam campaign targeting Portuguese-speaking users...

FBI Warns: End-of-Life Routers Hijacked to Power Cybercriminal Proxy Networks DrayTek Vigor RCE, CVE-2025-10547 Router security, TheMoon malware

FBI Warns: End-of-Life Routers Hijacked to Power Cybercriminal Proxy Networks

Do Son May 9, 2025

The Federal Bureau of Investigation (FBI) has issued a Public Service Announcement highlighting a growing threat in...

CVE-2025-2492: Critical ASUS Router Vulnerability Requires Immediate Firmware Update ASUS router vulnerability CVE-2025-2492

CVE-2025-2492: Critical ASUS Router Vulnerability Requires Immediate Firmware Update

Do Son April 21, 2025

ASUS has released a firmware update addressing a critical-severity vulnerability—CVE-2025-2492—with a CVSSv4 score of 9.2. The flaw...

SonicWall Patches Multi Vulnerabilities in NetExtender VPN Client SonicWall Zero-Day, SMA1000 Exploit Chain SonicWall, firewall configuration CVE-2024-29010 & CVE-2024-29011 SonicWall NetExtender VPN Vulnerability

SonicWall Zero-Day, SMA1000 Exploit Chain SonicWall, firewall configuration CVE-2024-29010 & CVE-2024-29011 SonicWall NetExtender VPN Vulnerability

SonicWall Patches Multi Vulnerabilities in NetExtender VPN Client

Do Son April 10, 2025

SonicWall has issued a security advisory disclosing three newly identified vulnerabilities in its NetExtender Windows client, a...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

Remote Access

CVE-2025-6561 (CVSS 9.8): Hunt Electronic DVR Vulnerability Exposes Admin Credentials in Plaintext

SHOE RACK Malware: NCSC Uncovers Stealthy Reverse SSH & DoH Post-Exploitation Tool Targeting FortiGate Firewalls

Critical ANPR Camera Flaw (CVE-2025-34022, CVSS 9.3) Exposes Selea TARGA Devices, PoC Available, No Vendor Response

Critical Versa Director Flaw (CVSS 9.8): Hardcoded Credentials Grant Root Access, PoC Available

Kimsuky APT Group Abuses HWP and AnyDesk for Covert Remote Surveillance

Critical Teleport Flaw (CVSS 9.8): Remote Authentication Bypass Threatens Infrastructure Access

Industrial Alert: AutomationDirect MB-Gateway Flaw Rated CVSS 10, No Software Fix

Legitimate Remote Tools Weaponized in Sophisticated Spam Campaign

FBI Warns: End-of-Life Routers Hijacked to Power Cybercriminal Proxy Networks

CVE-2025-2492: Critical ASUS Router Vulnerability Requires Immediate Firmware Update

SonicWall Patches Multi Vulnerabilities in NetExtender VPN Client