Security researchers have confirmed active exploitation attempts targeting the critical authentication bypass vulnerability in CrushFTP (CVE-2025-2825) following the public release of proof-of-concept exploit code. Based on Shadowserver Foundation’s most recent monitoring data, approximately 1,512 unpatched instances remain vulnerable globally as of March 30, 2025, with North America hosting the majority (891) of these exposed servers. […]
The post CrushFTP Vulnerability Exploited in Attacks Following PoC Release appeared first on Cyber Security News.
This article has been indexed from Cyber Security News