Washington, March 4, 2025 –CISA has added five exploited vulnerabilities from Cisco, Microsoft, and Hitachi to its emergency list. Hackers are already using them.
In a chilling cybersecurity alert, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned that five critical vulnerabilities in Cisco, Microsoft, Hitachi, and Progress software are being actively exploited by hackers. These security flaws could expose millions of users to cyberattacks, data theft, and unauthorized access!
Hackers Are Already Exploiting These Flaws!
CISA’s Known Exploited Vulnerabilities (KEV) catalog now includes five new security flaws, including:
- CVE-2023-20118 (Cisco Routers) – Hackers are hijacking end-of-life routers to build botnets.
- CVE-2022-43939 & CVE-2022-43769 (Hitachi Vantara Pentaho BA Server) – These flaws allow unauthorized access and remote command execution.
- CVE-2018-8639 (Microsoft Win32k) – This privilege escalation vulnerability lets attackers run malicious code with system-level access.
- CVE-2024-4885 (Progress WhatsUp Gold) – A path traversal flaw that allows remote code execution—already exploited globally.
A cybersecurity expert John Reynolds said:
These vulnerabilities are a hacker’s goldmine. If unpatched, they leave businesses and users completely exposed to cyberattacks.
Security researchers report that hackers from Russia, China, and Brazil are actively exploiting these vulnerabilities. According to Shadowserver, CVE-2024-4885 has already seen widespread attack attempts since August 2024. Sarah Connors, CISA advisor warned:
Organizations must act fast. Once a vulnerability is publicly known, attackers race to exploit it before companies can patch.
CISA mandates all federal agencies to fix these flaws by March 24, 2025, but every business and individual must update immediately.
With hackers exploiting Cisco & Microsoft flaws, your data is at risk, ExpressVPN encrypts your connection, keeping spies out even on compromised networks.
Other News At VPNRanks
Hey, wait!
Stay informed on the latest privacy updates, cybersecurity insights, and internet freedom news by following VPNRanks news daily! As your primary resource for critical updates in online security, we ensure you’re always in the know. Make VPNRanks your go-to guide for safeguarding your digital life.
