Welcome back to VulnVerse! It's our 25th weekly dispatch, and we've got another jam-packed edition for you. Let's dive into the latest vulnerabilities, exploits, and cyber threats.

Content:

• Vulnerabilities and Exploits 🔥: 29

• Data Breaches 💥: 1

• Malware and Ransomware 🐛: 5

• Software and System Issues ⚙️: 2

• Cloud ☁️: 7

• Cybersecurity Measures and Recommendations 🔒️: 3

• Advanced Persistent Threats (APT) 🕵️: 6

Vulnerabilities and Exploits 🔥

GSocket Gambling Scavenger – How Hackers Use PHP Backdoors and GSocket to Facilitate Illegal Gambling in Indonesia

PHP backdoors and gSocket are used to facilitate illegal online gambling activities in Indonesia. Insights are provided into hacker tactics and protective measures for organizations.

ICS Vulnerability Report: Hitachi Energy Network Management Flaw Scores a Perfect 10

Critical risks associated with Hitachi Energy systems are identified, alongside potential vulnerabilities and recommendations for mitigating risks in operational technology environments.

Cyble Fortinet's Authentication Bypass Zero-Day: Mitigation Strategies and IoCs for Enhanced Security

A zero-day vulnerability in Fortinet allowing authentication bypass is analyzed, emphasizing the importance of applying updates to safeguard systems.

Cyble Inside the Active Threats of Ivanti's Exploited Vulnerabilities

Vulnerabilities in Ivanti products exploited by threat actors are examined, with guidance for mitigating future risks through proactive measures.

CVE-2024-55591: Fortinet Authentication Bypass Zero-Day Vulnerability Exploited in the Wild

A Fortinet zero-day vulnerability (CVE-2024-55591) exploited in the wild is detailed, with an emphasis on the urgency of applying security patches.

Critical Vulnerabilities in SimpleHelp Remote Support Software

Critical vulnerabilities in SimpleHelp Remote Support Software are revealed, with potential exploitation scenarios and recommended patches to enhance system resilience.

Analyzing CVE-2024-44243, a macOS System Integrity Protection bypass through kernel extensions

A vulnerability (CVE-2024-44243) bypassing macOS System Integrity Protection through kernel extensions is reviewed, detailing the technical aspects and mitigation measures.

The Key to COMpromise - Pwning AVs and EDRs by Hijacking COM Interfaces, Part 1

COM hijacking is examined as an advanced persistence technique used by attackers to maintain access to compromised systems, with methods for detection and prevention discussed.

Windows BitLocker -- Screwed without a Screwdriver

Vulnerabilities in BitLocker encryption are explored, with a specific focus on physical attack vectors and the importance of securing hardware against unauthorized access.

Exploitation Walkthrough and Techniques - Ivanti Connect Secure RCE (CVE-2025-0282)

A walkthrough of exploiting a remote code execution (RCE) vulnerability (CVE-2025-0282) in Ivanti Connect Secure, with an in-depth analysis of techniques used and mitigation measures.