How Attackers Exploited ViewState Deserialization to Breach Sitecore Deployments A sophisticated cyber campaign has targeted organizations running Sitecore products, exploiting a critical zero-day flaw ( CVE-2025-53690 ). Attackers gained remote code execution by abusing exposed A... cybersecurity deserialization incident response malware remote code execution Sitecore ViewState zero-day