News

Stay up-to-date with the latest news and events in the cybersecurity industry. Here, you'll find a wide range of articles, updates, and event listings covering topics such as data breaches, emerging threats, and new security technologies.

22 July 2025

Vulnerabilities in ATEN International switches patched with the assistance of Positive Technologies experts

ATEN International, a manufacturer of IT connectivity and management solutions, has fixed vulnerabilities in its KVM over IP switches series CL57xx. A KVM device is a computer with a built-in keyboard, monitor, and touchpad in a special case designed for installation in server racks. The security issues were discovered by PT SWARM experts: Natalya Tlyapova, Denis Goryushev, and Dmitry Sklyarov. Three of the vulnerabilities were critical, and two others were classified as high-severity.

17 July 2025

Positive Technologies expert helps fix critical vulnerability in FreeIPA Directory Service

Red Hat has thanked Positive Technologies' PT SWARM expert Mikhail Sukhov for identifying a critical vulnerability in FreeIPA, a domain controller for Linux systems. FreeIPA enables centralized management of user accounts, access policies, and auditing. It is included in the Red Hat Enterprise Linux distribution, used by over 2,000 organizations worldwide, and forms the foundation for IT products from various vendors, including domestic ones. If exploited, the vulnerability could have allowed attackers to steal confidential company data. The vendor was notified of the threat in line with the responsible disclosure policy and has already released software patches.

16 July 2025

Positive Technologies launches free portal with data on over 300,000 global vulnerabilities

Positive Technologies, a leader in result-driven cybersecurity, has launched a portal consolidating data on software and hardware vulnerabilities from manufacturers worldwide. This regularly updated database helps ethical hackers, cybersecurity professionals, and organizations stay informed about the latest security flaws. The platform features detailed information on 317,000 vulnerabilities, the researchers who discovered them, and vendor recommendations for swift remediation.

14 July 2025

Microsoft thanks Positive Technologies expert for helping to fix vulnerability in 17 operating systems

A vulnerability affecting several Windows operating systems has been resolved thanks to Marat Gayanov, an expert from the Positive Technologies Expert Security Center (PT ESC). The flaw could have allowed attackers to disable targeted devices. The vendor was notified of the threat in line with the responsible disclosure policy and has released updates for all the affected 17 operating systems and their versions.

9 July 2025

Positive Technologies helps resolve zero-day vulnerability in Windows

Sergey Tarasov, Specialist at the Positive Technologies Expert Security Center, discovered a high-severity vulnerability affecting 37 desktop and server Windows operating systems, including Windows 11, Windows 10, Server 2025, Server 2022, and Server 2019 of various versions and architectures. The flaw in the NTFS file system driver could have led to privilege escalation on a user's computer if they opened a malicious virtual hard disk. Identified as CVE-2025-49689, the vulnerability was assigned a severity score of 7.8 on the CVSS 3.1 scale. Microsoft was notified under the responsible disclosure policy and released patches in July 2025.

7 July 2025

Positive Technologies expert helps fix vulnerability in the PHPOffice library

25 June 2025

Positive Technologies warns: phishing attacks increased by one-third over the past year

23 June 2025

Apple thanks Positive Technologies for discovering a vulnerability in its Shortcuts app

18 June 2025

Standoff at SPIEF 2025 to feature cyber exercises for blue teams from around the world

17 June 2025

Positive Technologies identifies key cyberthreats for financial companies in 2025–2026

Thinking about the best way to protect your company?

During the consultation we'll propose a solution precisely tailored to your organization.