IBM has issued urgent warnings about two critical vulnerabilities (CVE-2025-0159, CVE-2025-0160) in its Storage Virtualize products, including SAN Volume Controller and FlashSystem. These flaws allow attackers to bypass authentication and execute remote Java code, posing major risks like data theft and ransomware. Immediate upgrades to specific patched versions are necessary, as there are no effective workarounds.

‘Systemic gaps’ found private equity-backed healthcare companies’ cybersecurity preparedness
Private equity-backed healthcare companies have “systemic gaps” in their cybersecurity preparedness, according to a report from Clearwater Security. The findings revealed many such firms lack