• CISA confirms exploitation of VMware ESXi flaw by ransomware attackers
• OpenAI Frontier organizes AI agents under one system
• Malicious Commands in GitHub Codespaces Enable RCE
• Smartphones Now Involved in Nearly Every Police Investigation
• Why a decade-old EnCase driver still works as an EDR killer
• International sting dismantles illegal streaming empire serving millions
• New Hacking Campaign Exploits Microsoft Windows WinRAR Vulnerability
• GitHub enables multi-agent AI coding inside repository workflows
• Police shut down global DDoS operation, arrest 20-year-old
• AI-Enabled Voice and Virtual Meeting Fraud Surges 1000%+
• Microsoft brings project-focused AI agents into OneDrive
• Microsoft launches LiteBox, a security-focused open-source library OS
• Global SystemBC Botnet Found Active Across 10,000 Infected Systems
• New Technical Markers Reveal Expanding ShadowSyndicate Cybercriminal Infrastructure
• AI Drives Doubling of Phishing Attacks in a Year
• Two Critical Flaws in n8n AI Workflow Automation Platform Allow Complete Takeover
• SolarWinds Web Help Desk Vulnerability Actively Exploited
• Hundreds of Malicious Crypto Trading Add-Ons Found in Moltbot/OpenClaw
• SQL Injection Flaw Affects 40,000 WordPress Sites
• DockerDash Exposes AI Supply Chain Weakness In Docker's Ask Gordon

CVE-2025-22225, a VMware ESXi arbitrary write vulnerability, is being used in ransomware campaigns, CISA confirmed on Wednesday by updating the vulnerability’s entry in its Known Exploited Vulnerabilities (KEV) catalog. Researchers linked VMware ESXi zero-day trio to single exploit toolkit Broadcom fixed CVE-2025-22225, CVE-2025-22224 (a heap overflow vulnerability) and CVE-2025-22226 (an information disclosure flaw) in VMware ESXi, Workstation, and Fusion in early March 2025. At the time of their disclosure, Broadcom said that they have information …