Skip to content

Continuous Automated Red Teaming (CART)

Microsoft SharePoint Server Zero-Day (CVE-2025-53770): Urgent Patching Required

Overview On July 19, 2025, Microsoft disclosed a critical zero-day vulnerability in SharePoint Server (CVE-2025-53770, CVSS 9.8), actively exploited in large-scale attacks, breaching over 75 organizations. The flaw, a variant of CVE-2025-49704, allows unauthenticated remote code execution (RCE) via deserialization of untrusted data. CISA added it to its Known Exploited Vulnerabilities catalog, urging immediate action.… Read More »Microsoft SharePoint Server Zero-Day (CVE-2025-53770): Urgent Patching Required

Weekly Report: New Hacking Techniques and Critical CVEs July 11-17, 2025

Cyber adversaries intensified efforts this week with two new exploited zero-days, multiple critical vulnerabilities, and fresh ransomware-as-a-service (RaaS) operations adopting AI-driven negotiation panels. The following pages provide an exhaustive, technically focused brief for CISOs and security engineering teams. Modern attack surface expansion and rapid exploit adoption defined the last seven days. Google patched and confirmed… Read More »Weekly Report: New Hacking Techniques and Critical CVEs July 11-17, 2025

Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches: July 09-16, 2025

During the week under review, threat actors shifted from high-noise ransomware campaigns to quieter, precision intrusions abusing zero-day or recently patched vulnerabilities and abusing trusted cloud or software-supply-chain services. Fortinet’s FortiWeb, Citrix NetScaler ADC/Gateway and Wing FTP Server all saw in-the-wild exploits within 72 hours of public disclosure—highlighting the narrowing window between a patch release… Read More »Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches: July 09-16, 2025

Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches: July 02-09, 2025

Between July 2 and July 10, 2025, the cybersecurity landscape was marked by high-impact ransomware attacks, critical vulnerabilities in widely used platforms, and advanced persistent threat (APT) campaigns targeting government and enterprise sectors. This report provides an authoritative, technically exhaustive breakdown of each incident, strictly covering only those breaches and attacks that occurred within this… Read More »Weekly Cybersecurity Intelligence Report Cyber Threats & Breaches: July 02-09, 2025

Weekly Report: New Hacking Techniques and Critical CVEs: June 24-30, 2025

The final week of June 2025 witnessed an unprecedented escalation in sophisticated cyber warfare, with critical infrastructure bearing the brunt of state-sponsored espionage campaigns and financially motivated ransomware operations. This period was marked by the convergence of traditional cybercrime tactics with cutting-edge AI-powered attack vectors, presenting a complex threat landscape that challenges conventional security paradigms.… Read More »Weekly Report: New Hacking Techniques and Critical CVEs: June 24-30, 2025

Use Cases
Technology
About
Partner
Resources

FireCompass – An EC Council Ecosystem Company.
©2025 . All Rights Reserved.