The Shadowserver Foundation

Entity category: organization

Business

Operation Sentinel: $3M Recovered, Hundreds Arrested

December 25, 2025
Abstract smoke art featuring green, yellow, and red colors on a black background.

Operation Sentinel, a major Interpol-coordinated initiative, disrupted cybercrime across Africa, resulting in 574 arrests and the recovery of approximately $3…

Read More »
Business

Interpol Cracks 6 Ransomware Strains, Arrests Hundreds

December 24, 2025
Interpol officers in black uniforms with red lettering and logo.

Operation Sentinel, a major Interpol-led initiative across 19 African nations, resulted in 574 arrests, the seizure of $3 million, and…

Read More »
BigTech Companies

Urgent: 50,000 Cisco Firewalls at Risk From Active Attacks

October 1, 2025
Cisco logo with a dynamic, abstract background of red and blue light streaks.

Attackers are actively exploiting critical vulnerabilities CVE-2025-20333 and CVE-2025-20362 in around 50,000 Cisco ASA and FTD devices, enabling unauthorized remote…

Read More »
Business

Over 1,200 Arrested in Africa-Wide Cybercrime Crackdown

August 23, 2025
Cybercrime arrest: A handcuffed suspect in a hoodie is confronted by a law enforcement officer with a rifle in a red-lit server room.

Over 1,200 suspects were arrested in Operation Serengeti 2.0, an INTERPOL-coordinated effort targeting cybercrime networks affecting 88,000 victims. Authorities from…

Read More »
Cybersecurity

Critical CrushFTP Flaw (CVE-2025-54309) Exploited-Check If You’re at Risk

July 22, 2025
CrushFTP logo with a fist in a circular arrow, set against a blurred background of binary code and colorful lights.

A critical vulnerability (CVE-2025-54309) in CrushFTP is being exploited, allowing attackers to gain unauthorized administrative access to enterprise file-transfer servers.…

Read More »
Cybersecurity

Fortinet FortiWeb Hacks Tied to Public RCE Exploits

July 17, 2025
A hooded figure holds a red cube as shards of glass explode around them, creating a dramatic, dark scene.

Security teams are responding to active exploitation of a critical Fortinet FortiWeb vulnerability (CVE-2025-25257), allowing unauthenticated remote code execution via…

Read More »
Cybersecurity

84,000+ Roundcube Servers at Risk from Active Exploit

June 11, 2025
A warning sign reading 'Warning Vulnerable' sits in a server room blocked off by red and yellow caution tape.

A critical vulnerability (CVE-2025-49113) in Roundcube webmail servers (versions 1.1.0–1.6.10) exposes over 84,000 systems to remote code execution due to…

Read More »