watchTowr

Critical Monsta FTP Flaw Left 5,000+ Web Servers Open to Full Server Takeover

2 minute read

Security

Monsta FTP Vulnerability Exposed Thousands of Servers to Full Takeover

Monsta FTP users must update now! A critical pre-authentication flaw (CVE-2025-34299) allows hackers to fully take over web servers. Patch to version 2.11.3 immediately.

byDeeba Ahmed

November 10, 2025

Patch Now: Dell UnityVSA Flaw Allows Command Execution Without Login

2 minute read

Security

Patch Now: Dell UnityVSA Flaw Allows Command Execution Without Login

WatchTowr finds a serious flaw in Dell UnityVSA (CVE-2025-36604) letting attackers run commands without login. Dell issues patch 5.5.1 - update now.

byWaqas

October 6, 2025

SonicWall Urges Patch After 3 Major VPN Vulnerabilities Disclosed

2 minute read

Security

SonicWall Urges Patch After 3 Major VPN Vulnerabilities Disclosed

watchTowr's latest research details critical SonicWall SMA100 flaws (CVE-2025-40596, 40597, 40598). Discover how pre-auth stack/heap overflows and XSS put SSL-VPNs at risk. Patch now!

byDeeba Ahmed

July 30, 2025

watchTowr Warns of Active Exploitation of SonicWall SMA 100 Devices

2 minute read

Security

watchTowr Warns of Active Exploitation of SonicWall SMA 100 Devices

watchTowr reveals active exploitation of SonicWall SMA 100 vulnerabilities (CVE-2024-38475 & CVE-2023-44221) potentially leading to full system takeover…

byDeeba Ahmed

May 3, 2025

The Latest

Anonymizing Network Traffic: A Dive into SOCKS5 and Data Encryption

Securing Remote Server Access: Why VPNs Matter for Administrators

Fake Claude AI Installer Targets Windows Users with PlugX Malware

Fake Ledger Live App on Apple Store Linked to $9.5M Crypto Theft

watchTowr

Monsta FTP Vulnerability Exposed Thousands of Servers to Full Takeover

Patch Now: Dell UnityVSA Flaw Allows Command Execution Without Login

SonicWall Urges Patch After 3 Major VPN Vulnerabilities Disclosed

watchTowr Warns of Active Exploitation of SonicWall SMA 100 Devices

Security Risk Advisors Purple Team Participants Can Now Earn CPE Credits

Mallory Launches AI-Native Threat Intelligence Platform, Turning Global Threat Data Into Prioritized Action

AI Future: The Leading International AI and Web3 Forum to Take Place in April

Cybersecurity Firm TAC Security Hits 10,000 Clients, Enters Top 5 in Global VM & AppSec

2026 Cybersecurity Excellence Awards Winners Announced during RSA Conference as AI Security Dominates