Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

SessionReaper (CVE-2025-54236), an unauthenticated vulnerability in the Commerce REST API enables session takeover and possible RCE. If you run Adobe Commerce or Magento Open Source, this critical, pre-auth vulnerabilities can let attackers hijack customer accounts, manipulate orders, and in many real-world setups drop persistent PHP web shells on your servers.

API Security Evaluation Checklist In the first half of 2025, APIs have emerged as the primary focus for attackers. Unlike traditional broad attacks on websites, threat actors are increasingly exploiting vulnerabilities and launching DDoS attacks on APIs, which are often harder to secure and manage at scale. Key insights from the State of Application Security Report H1 2025.

The latest 2025 Verizon Data Breach Investigations Report (DBIR) reveals a striking shift: exploitation of vulnerabilities has surged to become the initial access vector in approximately 20% of breaches, a 34% increase over the prior year. In an environment where cyber threats evolve faster than patch cycles, enterprises no longer view penetration testing as a checkbox exercise.

Managed Security Service Providers (MSSPs) are tasked with securing dozens or even hundreds of client applications at once. Each client may have unique traffic patterns, custom rules, and distinct compliance needs. Managing Web Application Firewalls (WAFs) for such diverse environments can easily become chaotic if done manually or across fragmented systems. A centralized MSSP WAF dashboard changes that equation.

Managing Web Application Firewall (WAF) rules across multiple clients is one of the most critical yet challenging tasks for MSSPs. While WAFs are essential for blocking malicious traffic and protecting applications, overly aggressive rules can trigger false positives, blocking legitimate requests, and disrupting client operations. For MSSPs false positives can lead to operational inefficiencies, client dissatisfaction, and even revenue loss.

In October 2025, Microsoft disclosed a critical remote code execution vulnerability (CVE-2025-59287) in Windows Server Update Services (WSUS), which enables unauthenticated attackers to gain full control over affected servers. WSUS is a central patch management tool in Windows environments, responsible for approving, distributing, and monitoring updates across corporate networks.