The Hacker News

900+ Sangoma FreePBX Instances Compromised in Ongoing Web Shell Attacks

Over 900 FreePBX systems remain infected after CVE-2025-64328 exploitation, now listed in CISA KEV amid active attacks.
SecurityWeek

900 Sangoma FreePBX Instances Infected With Web Shells

Hackers exploited CVE-2025-64328, a FreePBX command injection vulnerability, to infect hundreds of instances with web shells.
Business Insider

Shell plc publishes fourth quarter 2025 press release

"2025 was a year of accelerated momentum, with strong operational and financial performance across Shell. We generated free cash flow of $26 billion, made significant progress in focusing our ...