New Year, New Insights!

In this month’s edition of CyberBytes, we’re diving into the December KEV Report, unpacking the key aspects of the Digital Operational Resilience Act (especially timely as today marks DORA Day!). We’re also excited to introduce our Industry Spotlight feature, tailored to address the unique challenges faced by specific sectors.

December KEV Report

Top Reported Known Exploitable Issues:

Don't wait for a cyber attack to strike. Stay ahead of the game with Rootshell's Active Exploit Report.

Our report provides you with the latest insights and knowledge to proactively defend your business against cyber threats.

• CVE-2025-0282 | Ivanti
• CVE-2024-41713 | Mitel MiCollab
• CVE-2020-2883 | Oracle WebLogic
• CVE-2025-21333, CVE-2025-21333, CVE-2025-21335 | Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege
• CVE-2024-52875 | Kerio Control Firewalls
• CVE-2024-53704 | SonicWall
• CVE-2024-55591 | FortiOS
• CVE-2024-55550 | Mitel MiCollab
• CVE-2024-50603 | Aviatrix Controller

For full details on the above, please download the report (don't worry, it's not gated!).

Empowering Financial Entities to Achieve DORA Compliance

Rootshell Security delivers advanced cybersecurity services to help organizations meet the technical testing requirements of the Digital Operational Resilience Act (DORA).

Through our cutting-edge PTAAS (Penetration Testing as a Service) platform, we provide scalable, tailored solutions designed to support compliance with Articles 25 and 26, ensuring operational resilience and robust security.

Our solutions are tailored to meet the technical mandates of DORA, providing financial entities with the tools and expertise to:

• Validate the operational resilience of ICT systems.
• Demonstrate compliance with regulatory standards.
• Enhance security posture through proactive testing and remediation.

Contact us today to learn more about how we can help your organization achieve DORA compliance!

Industry Spotlight

Financial Services

It makes sense, with it being DORA Day, that we focus this month on Financial Services.

The financial industry has always had serious challenges when it comes to cyber security and fraud, and these threats are only evolving as services are digitized. From defending legacy systems to securing web applications for online banking, safeguarding confidential data and maintaining compliance with regulations is paramount.

That’s where our penetration testing services & vulnerability management platform come in…

Ready to take back control of your cyber security? Book your demo today!

Staying one step ahead of potential threats has become increasingly challenging, so don't get left behind.

Subscribe to Rootshell's CyberBytes Newsletter to get all the latest updates and KEV's or email us at [email protected] to request a demo of our platform, where this information is overlayed with your data.