IBM has issued urgent warnings about two critical vulnerabilities (CVE-2025-0159, CVE-2025-0160) in its Storage Virtualize products, including SAN Volume Controller and FlashSystem. These flaws allow attackers to bypass authentication and execute remote Java code, posing major risks like data theft and ransomware. Immediate upgrades to specific patched versions are necessary, as there are no effective workarounds.

New RAT malware used for crypto theft, reconnaissance
Microsoft has identified a new remote access trojan (RAT) known as StilachiRAT, which uses sophisticated techniques to avoid detection and extract sensitive data. Although not