Cisco warns of unpatched AsyncOS zero-day exploited in attacks

Published on December 17, 2025

​Cisco warned customers today of an unpatched, maximum-severity Cisco AsyncOS zero-day actively exploited in attacks targeting Secure Email Gateway (SEG) and Secure Email and Web Manager (SEWM) appliances. [...]

Continue reading on website
Other news

SonicWall Fixes Actively Exploited CVE-2025-40602 in SMA 100 Appliances

December 17, 2025
SonicWall has rolled out fixes to address a security flaw in Secure Mobile Access (SMA) 100 series appliances that it said has been actively exploited in the wild.The vulnerability, tracked as CVE-2025-40602 (CVSS score: 6.6), concerns a case of local privilege escalation that arises as a result of insufficient authorization in the appliance management console (AMC).It affects the following

WhatsApp device linking abused in account hijacking attacks

December 17, 2025
Threat actors are abusing the legitimate device-linking feature to hijack WhatsApp accounts via pairing codes in a campaign dubbed GhostPairing. [...]