🚨 EUVD-2025-205503
📊 Score: 5.1/10 (CVSS v3.1)
📦 Product: SyCms
🏢 Vendor: shanyu
📅 Updated: 2025-12-28
📝 A vulnerability has been found in shanyu SyCms up to a242ef2d194e8bb249dc175e7c49f2c1673ec921. This issue affects the function addPost of the file Application/Admin/Controller/FileManageController.class.php of the component Administrative Panel. The manipulat...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-205503
Akira Ransomware Group claims breach of Ellafi Federal Credit Union, exposing data of 17,627 people
Ellafi Federal Credit Union suffered an Akira ransomware attack detected in October 2025, compromising sensitive personal and financial data of 17,627 individuals. The credit union is providing affected individuals with 12 months of complimentary identity protection services.
****
#cybersecurity #infosec #incident #ransomware
https://beyondmachines.net/event_details/akira-ransomware-group-claims-breach-of-ellafi-federal-credit-union-exposing-data-of-17627-people-7-2-e-p-t/gD2P6Ple2L
Ellafi Federal Credit Union suffered an Akira ransomware attack detected in October 2025, compromising sensitive personal and financial data of 17,627 individuals. The credit union is providing affected individuals with 12 months of complimentary identity protection services.
🚨 EUVD-2025-205502
📊 Score: n/a
📅 Updated: 2025-12-28
📝 No description available.
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-205502
ASN: AS3303
Location: Martigny-Ville, CH
Added: 2025-12-27T02:14
🔓 New: LDAP Injection & AD Exploitation
Auth bypass, blind injection, enumeration, pass-back attacks.
LDAP is SQL injection's overlooked cousin.
Rainbow Six Siege suffered an internal system breach allowing attackers to ban/unban players, spoof moderation feeds, and grant ~2B premium credits and all cosmetics. 🛡️
Ubisoft shut down servers, will roll back transactions, and hasn’t detailed root causes yet, raising accountability and security questions. 🔍
#TechNews #Cybersecurity #Privacy #DataProtection #UserRights #Gaming #Accountability #Breach #Infosec #DigitalRights #RainbowSixSiege #Ubisoft #Game #Games
Ubisoft's Rainbow Six Siege (R6) suffered a breach that allowed hackers to abuse internal systems to ban and unban players, manipulate in-game moderation feeds, and grant massive amounts of in-game currency and cosmetic items to accounts worldwide.
🚨 EUVD-2025-205501
📊 Score: 2.3/10 (CVSS v3.1)
📦 Product: JeecgBoot, JeecgBoot, JeecgBoot (+7 more)
📅 Updated: 2025-12-28
📝 A security flaw has been discovered in JeecgBoot up to 3.9.0. Affected is the function queryDepartPermission of the file /sys/permission/queryDepartPermission. The manipulation of the argument departId results in improper authorization. The...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-205501
🚨 EUVD-2025-205500
📊 Score: 2.3/10 (CVSS v3.1)
📦 Product: JeecgBoot, JeecgBoot, JeecgBoot (+7 more)
📅 Updated: 2025-12-28
📝 A weakness has been identified in JeecgBoot up to 3.9.0. Affected by this vulnerability is the function getPositionUserList of the file /sys/position/getPositionUserList. This manipulation of the argument positionId causes improper authoriz...
🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-205500
EUVD Bot
BeyondMachines 
urlDNA.io 
Shodan Safari
Rubén Santos García
knoppix
