DarkReading Daily

May. 7, 2025

Signup

Daily Edition

Today’s news and insights for cybersecurity professionals

- Today's News and Features -

Researcher Says Patched Commvault Bug Still Exploitable‎‎

CISA added CVE-2025-34028 to its Known Exploited Vulnerabilities catalog, citing active attacks in the wild.‎‎

Keep Reading →

'Easily Exploitable' Langflow Vulnerability Requires Immediate Patching‎‎

The vulnerability, which has a CVSS score of 9.8, is under attack and allows threat actors to remotely execute arbitrary commands on servers running the agentic AI builder.‎‎

CISA Warns 2 SonicWall Vulnerabilities Under Active Exploitation‎‎

The vulnerabilities affect SonicWall's SMA devices for secure remote access, which have been heavily targeted by threat actors in the past.‎‎

THE EDGE

A Cybersecurity Paradox: Even Resilient Organizations Are Blind to AI Threats‎

Organizations are underestimating the advanced technology's risks to the software supply chain, according to a new LevelBlue report.‎

DR TECHNOLOGY

Microsoft Readies Administrator Protection Option for Windows 11‎

Microsoft's David Weston describes the new feature as the most significant architectural Windows security change in a generation.‎

SPONSORED ARTICLE

Analyzing Zero-Day Exploits Without Exposure‎

Discover zero-day vulnerabilities, proxy use in investigations, and ways to protect sensitive data.‎

- Commentary -

Opinions from thought leaders around the cybersecurity industry

Addressing the Top Cyber-Risks in Higher Education‎

As attacks accelerate, security leaders must act to gain visibility across their entire institution's network and systems and continuously educate their users on best practices.‎