影子服务器基金会披露，超过900个Sangoma FreePBX实例仍被Web Shell感染，攻击者利用命令注入漏洞CVE-2025-64328发起攻击。受感染实例中401个位于美国，其余分布在巴西、加拿大、德国和法国等国。该高危漏洞影响17.0.2.36及以上版本，已在17.0.3版本中修复。美国网络安全机构已将此漏洞列入已知被利用漏洞目录，建议用户尽快更新至最新版本。

Web shells, a common type of post-exploitation tool that provides easy-to-use interface through which to issue commands to a compromised server, have become increasingly popular as attackers become ...

Hackers exploited CVE-2025-64328, a FreePBX command injection vulnerability, to infect hundreds of instances with web shells.

Over 900 FreePBX systems remain infected after CVE-2025-64328 exploitation, now listed in CISA KEV amid active attacks.

Tanya Candia is an international management expert, specializing for more than 25 years in information security strategy and communication for public- and private-sector organizations. Stealthy, ...

Fresh proof-of-concept (PoC) exploits are circulating in the wild for a widely targeted Atlassian Confluence Data Center and Confluence Server flaw. The new attack vectors could enable a malicious ...

The attack methods being used to abuse the bug can successfully circumvent security measures, evading detection by security endpoints during scanning. A patched critical remote code execution (RCE) ...

Hackers used log poisoning and web shells to convert Nezha into a remote access tool targeting networks across East Asia. China-affiliated hackers have quietly turned a once-benign open-source network ...

About 2000 Citrix NetScalers Were Compromised in Massive Attack Campaigns Your email has been sent Exploited Citrix NetScaler vulnerability Exposed NetScaler appliances backdoored with web shells ...