Topic: importance patching updates

1,000+ CrushFTP servers vulnerable to active hijacking attacks

Over 1,000 CrushFTP servers remain vulnerable to a critical flaw (CVE-2025-54309), allowing attackers to hijack admin access and steal sensitive data due to improper AS2 validation in outdated versions. CrushFTP confirmed active exploitation in mid-July, urging users to patch to versions 10.8.5 o...