The US Food and Drug Administration (FDA) is advising hospitals to disconnect Contec’s CMS8000 patient monitor from the internet due to cybersecurity vulnerabilities. The compromised monitors, which could potentially be controlled remotely by unauthorised users, include a hidden backdoor function in their software, enabling easy bypass of cybersecurity controls. The FDA is working with Contec to rectify the issues.

400+ SAP NetWeaver Devices Vulnerable to 0-Day Attacks that Exploited in the Wild
Shadow Servers have identified 454 vulnerable SAP NetWeaver systems affected by a critical zero-day flaw, CVE-2025-31324, allowing unauthenticated file uploads and potential system compromise. Discovered