Aggregator

According to recent industry analysis, cybersecurity professionals are overwhelmed by a flood of security alerts. Organizations process an average of 569,354 alerts annually, yet only 2-5% require immediate action, highlighting the importance of prioritizing vulnerabilities. This overwhelming volume of notifications has created a critical challenge for security teams worldwide. They must now navigate massive amounts […]

The post Prioritizing Vulnerabilities in a Sea of Alerts appeared first on Cyber Security News.

Two local information disclosure flaws in Linux crash-reporting tools have been identified exposing system data to attackers

A vulnerability, which was classified as critical, has been found in Wasmi 128. This issue affects some unknown processing of the component Host Handler. The manipulation leads to out-of-bounds write. The identification of this vulnerability is CVE-2024-28123. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in argocd up to 2.8.11/2.9.0/2.9.7/2.10.0/2.10.2. This issue affects some unknown processing. The manipulation leads to improper privilege management. The identification of this vulnerability is CVE-2023-50726. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linksys RE6500, RE6250, RE6300, RE6350, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. It has been declared as critical. This vulnerability affects the function ssid1MACFilter of the file /goform/ssid1MACFilter. The manipulation of the argument apselect_%d/newap_text_%d leads to os command injection. This vulnerability was named CVE-2025-5447. The attack can be initiated remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

Cybersecurity researchers have identified a sophisticated new malware campaign leveraging the deceptive ClickFix technique to distribute EddieStealer, a dangerous information-stealing malware built using the Rust programming language. This emerging threat represents a significant evolution in social engineering tactics, exploiting user trust through fake CAPTCHA verification systems to trick victims into executing malicious commands. The attack […]

The post Threat Actors Using ClickFix Technique to Deliver EddieStealer Malware appeared first on Cyber Security News.

Ubuntu security advisory (AV25-305)

Fplus показал, что бывает без PlayStation.

Alleged database leak of National Agency for Land Conservation, Cadastre, and Cartography (ANCFCC)

A new and sophisticated malware distribution framework dubbed “HuluCaptcha” has emerged, leveraging fake CAPTCHA verification pages to trick users into executing malicious PowerShell commands through Windows Run dialogs. This advanced threat represents a significant evolution in social engineering attacks, combining legitimate-looking security verification interfaces with complex multi-stage infection chains that have successfully compromised high-value targets […]

The post HuluCaptcha – A FakeCaptcha Kit That Trick Users to Run Code via The Windows Run Command appeared first on Cyber Security News.

A vulnerability was found in Microsoft Windows Vista. It has been rated as critical. Affected by this issue is some unknown functionality of the component SMBv2 Signing Handler. The manipulation leads to code injection. This vulnerability is handled as CVE-2007-5351. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Microsoft Windows and classified as problematic. Affected by this issue is some unknown functionality of the component LSASS. The manipulation leads to improper access controls. This vulnerability is handled as CVE-2007-5352. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Sun Solaris 10.0. This vulnerability affects unknown code of the component Trusted Extension Handler. The manipulation leads to denial of service. This vulnerability was named CVE-2007-5368. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Sun Solaris 10.0. This issue affects some unknown processing. The manipulation leads to improper resource management. The identification of this vulnerability is CVE-2007-5367. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Microsoft Web Proxy. It has been rated as problematic. This issue affects some unknown processing of the component Auto-Discovery Feature. The manipulation leads to an unknown weakness. The identification of this vulnerability is CVE-2007-5355. The attack may be initiated remotely. There is no exploit available. It is recommended to disable the affected component.

A vulnerability was found in Sun Solaris 10.0. It has been classified as problematic. This affects an unknown part of the component BSM Network Auditing Handler. The manipulation leads to configuration. This vulnerability is uniquely identified as CVE-2007-5422. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in RealNetworks RealPlayer 10.0/10.1/10.5. It has been classified as very critical. Affected is an unknown function. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2007-5400. It is possible to launch the attack remotely. There is no exploit available.

Ladon：内存加载渗透扫描器（无需落地）

Ladon 是一款多功能的渗透测试工具，旨在帮助安全专业人员完成渗透测试的各个阶段，从信

Red Hat security advisory (AV25-304)

АСУ ТП по-новому: защищённая автоматизация уже в разработке.