Offensive Sequence
LightNews LightNews
banner
offseq.bsky.social
Offensive Sequence
@offseq.bsky.social
22 followers 0 following 1.1K posts
OffSeq is a cutting-edge European cybersecurity company helping organizations build digital resilience through tailored, proactive security solutions. #CyberSecurity https://www.offseq.com/ https://radar.offseq.com/ https://guard.offseq.com/
Posts Replies Media Videos
Pinned
offseq.bsky.social
Offensive Sequence @offseq.bsky.social · Oct 5
🚨 Radar v2 is live!
Major upgrades have landed at radar.offseq.com

🧠 New in Version 2:
1️⃣ Submit a community link — share high-signal threat analysis, incident reports.
2️⃣ Join community reviews
3️⃣ Revamped UI/UX

💥 Fresh intel awaits — jump back in and add your insights: radar.offseq.com
Threat Radar | OffSeq - Live Threat Intelligence
Real-time cyber threat intelligence radar showing the latest vulnerabilities, malware, and cyber threats affecting European countries and beyond.
radar.offseq.com
offseq.bsky.social
React RSC faces CRITICAL flaws—unauthenticated DoS & code leaks in versions 19.0.0–19.2.2. Patch react-server-dom packages now & audit Server Functions. Details: https://radar.offseq.com/threat/new-react-rsc-vulnerabilities-enable-dos-and-sourc-5809e665 #OffSeq #ReactJS #Security
Security threat visualization
December 12, 2025 at 10:33 AM
offseq.bsky.social
HIGH severity! servify-express <1.2 lets attackers crash Node.js servers via large JSON requests. Upgrade to 1.2+ or set strict limits ASAP. 🛡️ https://radar.offseq.com/threat/cve-2025-67731-cwe-400-uncontrolled-resource-consu-02a51622 #OffSeq #NodeJS #SecurityAlert
Security threat visualization
December 12, 2025 at 9:04 AM
offseq.bsky.social
ShaneIsrael fireshare <1.3.0 hit by CRITICAL command injection (CVSS 9.8). RCE possible via uploads—patch to 1.3.0+ or disable Public Uploads now! https://radar.offseq.com/threat/cve-2025-67728-cwe-77-improper-neutralization-of-s-a1dfe2f1 #OffSeq #SecurityAlert #fireshare
Security threat visualization
December 12, 2025 at 7:34 AM
offseq.bsky.social
🚨 CRITICAL: sh1zen Multi Uploader for Gravity Forms plugin lets unauthenticated attackers delete files on any WordPress site. Audit & disable plugin now — all versions affected! https://radar.offseq.com/threat/cve-2025-14344-cwe-22-improper-limitation-of-a-pat-561e2c4d #OffSeq #WordPress #CVE2025...
Security threat visualization
December 12, 2025 at 6:04 AM
offseq.bsky.social
🚨 CRITICAL: LazyTasks plugin for WordPress lets unauthenticated attackers hijack admin accounts via REST API flaw. Disable 'user/role/edit/' endpoint now! Full details: https://radar.offseq.com/threat/cve-2025-12963-cwe-862-missing-authorization-in-la-b7f1f84a #OffSeq #WordPress #Security
Security threat visualization
December 12, 2025 at 4:34 AM
offseq.bsky.social
CRITICAL: CVE-2025-14534 — UTT 进取 512W up to 3.1.7.7-171114 vulnerable to remote buffer overflow. Public exploit, no patch! Isolate, restrict access, and monitor endpoints ASAP. https://radar.offseq.com/threat/cve-2025-14534-buffer-overflow-in-utt-512w-46bf1244 #OffSeq #CVE #Vulnerability
Security threat visualization
December 12, 2025 at 3:05 AM
offseq.bsky.social
CRITICAL: Buffer overflow in UTT 进取 512W (≤3.1.7.7-171114) — remote exploit available, no patch from vendor. Segment devices, restrict access, and monitor for attacks now. Details: https://radar.offseq.com/threat/cve-2025-14535-buffer-overflow-in-utt-512w-d00ee28b #OffSeq #SecurityAlert #IoT
Security threat visualization
December 12, 2025 at 1:35 AM
offseq.bsky.social
Sandboxie-Plus (<1.16.7) hit by CRITICAL vuln (CVSS 9.9): attackers can escape the sandbox & gain SYSTEM access. Upgrade to 1.16.7+ now! 🚨 https://radar.offseq.com/threat/cve-2025-64721-cwe-190-integer-overflow-or-wraparo-1c3827ed #OffSeq #WindowsSecurity #CVE202564721
Security threat visualization
December 12, 2025 at 12:04 AM
offseq.bsky.social
QND Premium/Advance/Standard ≤11.0.9i hit by HIGH severity vuln (CVE-2025-64701): local users can escalate to admin. Audit privileges & monitor for suspicious actions. Patch ASAP! https://radar.offseq.com/threat/cve-2025-64701-privilege-chaining-in-qualitysoft-c-9f7cc552 #OffSeq #Vulnerability #S...
Security threat visualization
December 11, 2025 at 9:33 AM
offseq.bsky.social
Gladinet CentreStack & Triofox hit by CRITICAL attacks using hard-coded keys—enabling RCE & unauthorized access. Update to v16.12.10420.56791 & rotate machine keys now! https://radar.offseq.com/threat/active-attacks-exploit-gladinets-hard-coded-keys-f-43cb43d6 #OffSeq #CyberSecurity #RCE
Security threat visualization
December 11, 2025 at 8:04 AM
offseq.bsky.social
Ibexa user (v5.0.0-beta1–5.0.3) HIGH vuln: Users can change passwords w/o old password. Upgrade to 5.0.4+ & review session security. 🚨 https://radar.offseq.com/threat/cve-2025-67719-cwe-620-unverified-password-change--b84becb0 #OffSeq #Ibexa #Security
Security threat visualization
December 11, 2025 at 6:34 AM
offseq.bsky.social
SOAPwn flaw in .NET: CRITICAL risk 🚨 for Barracuda RMM, Ivanti EPM, Umbraco 8. Remote code exec via malicious WSDLs. Patch now, restrict WSDL sources, monitor file writes. Full details: https://radar.offseq.com/threat/net-soapwn-flaw-opens-door-for-file-writes-and-rem-394da945 #OffSeq #Security #...
Security threat visualization
December 11, 2025 at 5:04 AM
offseq.bsky.social
CRITICAL: WP CarDealer plugin flaw allows admin registration by anyone—full site takeover risk! All versions affected. Disable reg. & monitor admin accounts until patched. https://radar.offseq.com/threat/cve-2025-13764-cwe-269-improper-privilege-manageme-e97de041 #OffSeq #WordPress #Vulnerability
Security threat visualization
December 11, 2025 at 4:03 AM
offseq.bsky.social
CRITICAL SQL Injection in WBCE CMS (<1.6.5): Low-privileged users can fully compromise your DB. Upgrade to 1.6.5+ immediately to mitigate. 🔒 https://radar.offseq.com/threat/cve-2025-65950-cwe-89-improper-neutralization-of-s-dae8c159 #OffSeq #SQLInjection #WBCE
Security threat visualization
December 11, 2025 at 2:33 AM
offseq.bsky.social
CRITICAL: CVE-2025-67511 in aliasrobotics CAI (≤0.5.9) enables remote command injection—no patch yet. Restrict access, enforce input validation, and monitor usage. Details: https://radar.offseq.com/threat/cve-2025-67511-cwe-77-improper-neutralization-of-s-63820d7d #OffSeq #AIsecurity #CommandInje...
Security threat visualization
December 11, 2025 at 1:04 AM
offseq.bsky.social
CRITICAL: CVE-2025-67510 in neuron-core neuron-ai (<2.8.12) lets prompt injections run destructive SQL via MySQLWriteTool. Upgrade to 2.8.12+ and restrict DB privileges now! https://radar.offseq.com/threat/cve-2025-67510-cwe-250-execution-with-unnecessary--4cf6ea08 #OffSeq #CVE202567510 #AIsecurity
Security threat visualization
December 11, 2025 at 12:02 AM
offseq.bsky.social
Microsoft issues patches for 56 Windows flaws, incl. 2 zero-days—one actively exploited for SYSTEM-level escalation in cloud file driver. Prioritize updates & monitor for suspicious activity. https://radar.offseq.com/threat/microsoft-issues-security-fixes-for-56-flaws-inclu-72859fb1 #OffSeq #Micr...
Security threat visualization
December 10, 2025 at 10:34 AM
offseq.bsky.social
CRITICAL: EZCast Pro II (v1.17478.146) has a predictable default Wi-Fi password (CVE-2025-13955) — attackers nearby can gain access. Review AP settings & limit exposure. https://radar.offseq.com/threat/cve-2025-13955-cwe-330-use-of-insufficiently-rando-ef4a57fd #OffSeq #IoTSecurity #CVE2025
Security threat visualization
December 10, 2025 at 9:04 AM
offseq.bsky.social
Elated Membership plugin (WordPress) faces a CRITICAL auth bypass (CVE-2025-13613, CVSS 9.8). Admin takeover possible! Disable or restrict plugin & secure admin emails ASAP. https://radar.offseq.com/threat/cve-2025-13613-cwe-289-authentication-bypass-by-al-337c03b8 #OffSeq #WordPress #Security
Security threat visualization
December 10, 2025 at 7:34 AM
offseq.bsky.social
Fortinet, Ivanti & SAP urge patching CRITICAL auth bypass & RCE flaws. Impact: FortiOS, Ivanti Endpoint Manager, SAP core systems. Disable FortiCloud SSO if active & update now! https://radar.offseq.com/threat/fortinet-ivanti-and-sap-issue-urgent-patches-for-a-9a0f9a74 #OffSeq #Vulnerability #Sec...
Security threat visualization
December 10, 2025 at 6:03 AM
offseq.bsky.social
CRITICAL: TECNO AudioLink (1.3.0.87) lets local attackers overwrite system files—full device compromise risk! Restrict device access & monitor for suspicious activity. Patch pending. https://radar.offseq.com/threat/cve-2025-9056-cwe-863-incorrect-authorization-in-t-3cc06726 #OffSeq #MobileSecurit...
Security threat visualization
December 10, 2025 at 4:34 AM
offseq.bsky.social
UK hits Russian & Chinese firms with sanctions over CRITICAL hybrid info warfare targeting EU critical infrastructure. Act: boost threat intel & hybrid defenses now. https://radar.offseq.com/threat/uk-sanctions-russian-and-chinese-firms-suspected-o-f6ec3f82 #OffSeq #CyberThreats #CriticalInfra
Security threat visualization
December 10, 2025 at 3:05 AM
offseq.bsky.social
🚨 CRITICAL: Adobe ColdFusion flaw (CVE-2025-61808) lets privileged attackers upload malicious files & run code—no user action needed. Restrict uploads, monitor for patches! https://radar.offseq.com/threat/cve-2025-61808-unrestricted-upload-of-file-with-da-35155246 #OffSeq #ColdFusion #security
Security threat visualization
December 10, 2025 at 1:34 AM
offseq.bsky.social
CRITICAL: WeGIA <3.5.5 has SQL Injection in editar_categoria.php—can fully compromise databases. Upgrade to 3.5.5+ or mitigate now! https://radar.offseq.com/threat/cve-2025-67501-cwe-89-improper-neutralization-of-s-14e94ab2 #OffSeq #SQLInjection #Vulnerability
Security threat visualization
December 10, 2025 at 12:03 AM
offseq.bsky.social
Robocode 1.9.3.6 hit by CRITICAL vuln: insecure temp file creation (CVE-2025-14307) risks code execution. Restrict permissions, use sandboxing, & monitor logs. No patch yet — act now. https://radar.offseq.com/threat/cve-2025-14307-cwe-377-in-robocode-project-robocod-28898719 #OffSeq #Robocode #Se...
Security threat visualization
December 9, 2025 at 10:34 AM