Vincent Yu
Photojournalist at Associated Press
Articles
-
1 week ago |
smartermsp.com | Vincent Yu
Veeam has released security patches to address a critical vulnerability in its Backup & Replication software, identified as CVE-2025-23121. The flaw allows unauthenticated remote attackers to execute arbitrary code under certain conditions. Review the details of this Cybersecurity Threat Advisory to mitigate your risk.
-
3 weeks ago |
smartermsp.com | Vincent Yu
The Cisco Identity Services Engine (ISE) has a critical vulnerability, CVE-2025-20286, with a CVSS score of 9.9 out of 10. If successfully exploited, threat actors can gain privileged access without authentication and perform unauthorized operations on vulnerable systems. Read this Cybersecurity Threat Advisory to learn how to mitigate the risks associated with this vulnerability.
-
1 month ago |
smartermsp.com | Vincent Yu
SAP has released patches to address a second vulnerability, CVE-2025-42999, affecting its SAP NetWeaver tool. The vulnerability involves a privilege escalation issue that, when chained with SAP’s CVE-2025-31324 vulnerability (unauthenticated file upload flaw in SAP NetWeaver Visual Composer), can enable attackers to move from remote code execution (RCE) to complete administrative control over the SAP environment. Continue reading this Cybersecurity Threat Advisory to keep your environment safe.
-
1 month ago |
smartermsp.com | Vincent Yu
SAP published a critical vulnerability, CVE-2025-31324 with a CVSSv3 score of 10.0. The flaw is actively exploited in the wild. Successful exploitation can lead to arbitrary file uploads, leading to remote code execution (RCE) and full system compromise. Review this Cybersecurity Threat Advisory to learn how you can protect your environment from exploitation. CVE-2025-31324 is a critical zero-day vulnerability affecting the Visual Composer component of SAP NetWeaver.
-
2 months ago |
smartermsp.com | Vincent Yu
A critical security vulnerability, tracked as CVE-2025-30406, has been disclosed in Gladinet’s CentreStack and Triofox file-sharing platforms. According to reports, this flaw arises from the presence of hardcoded administrative credentials embedded in default software builds. Attackers can use these credentials to gain unauthorized access to vulnerable systems.
Journalists covering the same region
Christopher DeWolf
Managing Editor at Zolima City Mag
Christopher DeWolf primarily covers news in Hong Kong and surrounding areas in the Special Administrative Region of China.
Kylie Knott
Assistant Editor, Culture at South China Morning Post
Kylie Knott primarily covers news in Hong Kong, Hong Kong SAR, China and surrounding areas.
Stephen Vines
Journalist at Freelance
Stephen Vines primarily covers news in Hong Kong, Hong Kong and surrounding areas.
Natasha Tang
Associate Digital Content Editor at Echelon Hong Kong
Natasha Tang primarily covers news in Hong Kong, Hong Kong Special Administrative Region, China and surrounding areas.
Shirley Lau
Reporter at Agencia EFE
Shirley Lau primarily covers news in Hong Kong, Hong Kong Special Administrative Region, China and surrounding areas.
Try JournoFinder For Free
Search and contact over 1M+ journalist profiles, browse 100M+ articles, and unlock powerful PR tools.
Start Your 7-Day Free Trial →