Skip to content

Deserialization Attacks

ShinyHunters Salesforce Data Leak

Date of Incident: 2025-10-01 Overview: The ShinyHunters Salesforce Data Leak, reported on October 3, 2025, involves unauthorized access to Salesforce cloud instances due to exploited API vulnerabilities and possibly misconfigured permissions. Approximately 1 billion records from 39 companies were potentially impacted, with personal information stolen and samples leaked alongside ransom demands. The breach demonstrated automated… Read More »ShinyHunters Salesforce Data Leak

Red Hat Data Breach

Date of Incident: April 2024 Overview: The Red Hat data breach, reported in October 2025, occurred in April 2024 and involved unauthorized access to around 570GB of compressed data from 28,000 internal development repositories. The breach affected the software sector, compromising sensitive Customer Engagement Reports (CERs) that contained critical information about networks and infrastructure of… Read More »Red Hat Data Breach

CVE-2025-53770 (“ToolShell”): Critical SharePoint RCE Exploited in the Wild

A Critical Remote Code Execution (RCE) vulnerability—CVE-2025-53770 (“ToolShell”)— is actively being exploited in the wild, targeting the on-premises SharePoint Servers. In this blog, we break down the technical details, real-world attack flow, and actionable mitigations. What Is CVE-2025–53770? CVE-2025-53770 is a critical vulnerability with CVSS score of 9.8. It is an unauthenticated RCE vulnerability affecting… Read More »CVE-2025-53770 (“ToolShell”): Critical SharePoint RCE Exploited in the Wild

CVE-2025-54253: Pre-Auth RCE – Adobe AEM Forms on JEE Critical OGNL Injection

A critical vulnerability, CVE-2025-54253, was discovered in Adobe Experience Manager (AEM) Forms on JEE, a widely used enterprise Java application platform. This vulnerability arises from improper handling of OGNL expressions in an exposed debug servlet, allowing attackers to bypass authentication and remotely execute arbitrary code. With a maximum severity rating of CVSS 10.0, this vulnerability… Read More »CVE-2025-54253: Pre-Auth RCE – Adobe AEM Forms on JEE Critical OGNL Injection

SonicWall Firewall Configuration Backup Breach

Date of Incident: September 2025 Overview: In September 2025, SonicWall experienced a security incident affecting less than 5% of its firewall install base. The breach involved unauthorized access to firewall configuration backup files via brute-force attacks on the company’s cloud API service. Attackers potentially gained access to sensitive information such as credentials and tokens. While… Read More »SonicWall Firewall Configuration Backup Breach

Use Cases
Technology
About
Partner
Resources

FireCompass – An EC Council Ecosystem Company.
©2025 . All Rights Reserved.