Welcome to Cyber Files

June didn’t pull any punches. Zero-days, credential leaks, and more third-party chaos. CyberFiles brings you the facts, not filler. The biggest CVEs, real-world breaches, and practical takeaways that actually matter. If you missed it or blinked, we’ve got you covered.

1. CVE‑2025‑20282 | Unauthenticated File Upload and Root Code Execution in Cisco ISE and ISE PIC

2. CVE-2025-47172: Remote Code Execution in Microsoft SharePoint Server

3. CVE-2025-32710: Remote Code Execution in Windows Remote Desktop Services via Use-After-Free

4. CVE-2025-33071: Remote Code Execution in Windows Kerberos KDC Proxy Service via Use-After-Free

5. CVE-2025-29828: Remote Code Execution in Windows Secure Channel

• 16 Billion Credentials Leaked in Historic Data Dump This breach wasn’t the result of a single attack but a massive data dump compiled from infostealer malware infections across millions of…Read More
• Zoomcar Breach Exposes Data of 8.4 Million Users - Hackers exploited an unpatched API vulnerability in Zoomcar's backend systems to access user…Read More
• Bank Sepah Outage Triggers Speculation of Cyberattack - The incident was likely caused by unauthorized physical access to a server facility, possibly linked to sabotage or a targeted…Read More
• Aflac Discloses Customer Data Breach - Cybercriminal group "Scattered Spider" exploited stolen credentials to access internal systems and exfiltrate sensitive…Read More

Running scans isn’t the problem. Sorting them is. That’s what this session with Lalita Dhalia is all about. See how Strobes Scanners simplify security without adding more tools.

→ Watch the Session

• What Is Vulnerability Prioritization? A No-Fluff Playbook
• MCP (Model Context Protocol) and Its Critical Vulnerabilities
• What is Continuous Penetration Testing? An Ultimate Guide
• AI Governance Framework: For Security Leaders
• Addressing Data Protection and Compliance with Mobile Application Pentesting
• How to Tame Your Multi-Cloud Attack Surface with Pentesting