@shadowserver.bsky.social on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

The Shadowserver Foundation

shadowserver.bsky.social

did:plc:3xyh2kw5hfxsax4zff3pp5ub

We have been sharing Monsta FTP CVE-2025-34299 (pre-auth RCE) vulnerable instances for the last few weeks. We still see over 780 IPs vulnerable (version based check) instances daily. Most affected: US & Slovakia: https://dashboard.shadowserver.org/statistics/combined/time-series/?date_range=30&source=http_vulnerable&source=http_vulnerable6&tag=cve-2025-34299%2B&dataset=unique_ips&limit=100&group_by=geo&stacking=stacked&auto_update=on https://dashboard.shadowserver.org/statistics/combined/tree/?date_range=1&source=http_vulnerable&source=http_vulnerable6&tag=cve-2025-34299%2B&data_set=count&scale=log&auto_update=on

2025-11-24T13:27:26.133Z