Recent reports of active exploitation of BMC vulnerabilities, specifically CVE-2024-54085 (CVSS 10.0) in AMI MegaRAC Baseboard Management Controller (BMC) firmware, underscore the urgent need to secure server infrastructure. Discovered on March 11, 2025, this critical...
Critical server vulnerability CVE-2024-54085 (CVSS 10.0) in AMI MegaRAC BMC firmware, discovered March 11, 2025, is actively exploited, CISA warns. The Redfish interface flaw allows attackers to bypass authentication, gaining control over servers from AMD, ARM,...
Business continuity is critical as unexpected disasters threaten small businesses. This guide explores how your IT provider can keep you operational. Power outages, cyberattacks, hardware failures and natural disasters rarely arrive with a warning, and when they hit,...
The Scania breach, disclosed on May 28, 2025, targeted the Scania Financial Services division’s “insurance.scania.com” application, exposing sensitive data. The attacker, alias “hensi,” used stolen credentials from an external IT partner,...
A critical AI data leak in Asana’s Model Context Protocol (MCP) feature, discovered on June 4, 2025, exposed sensitive customer data, including tasks, project metadata, and files, across organizations. The logic flaw in the MCP server allowed cross-tenant access,...
