Microsoft has released patches for two significant vulnerabilities in Microsoft Office that could allow attackers to execute malicious code on affected systems. The flaws, tracked as CVE-2025-54910 and CVE-2025-54906, were disclosed on September 9, 2025, and affect various versions of the popular productivity suite. While Microsoft has assessed exploitation as “less likely” for both vulnerabilities […]
The post Critical Microsoft Office Vulnerabilities Let Attackers Execute Malicious Code appeared first on Cyber Security News.
HackerOne has confirmed it was among the companies affected by a recent data breach that provided unauthorized access to its Salesforce instance. The access was gained through a compromise of the third-party application Drift, which Salesloft owns. The bug bounty platform announced the security incident, aligning with its company value of “Default to Disclosure.” According […]
The post HackerOne Confirms Data Breach – Hackers Gained Unauthorized Access To Salesforce Instance appeared first on Cyber Security News.
You must login to view this content
You must login to view this content
Salesloft has announced the restoration of its integration with Salesforce following the incident linked to the Drift platform
The post Salesloft Restores Salesforce Integration After GitHub & AWS Breach appeared first on Penetration Testing Tools.
At the end of August, GreyNoise recorded a sharp surge in scanner activity targeting Cisco ASA devices. Experts
The post Warning: Massive Botnet Is Scanning for Cisco ASA Vulnerabilities appeared first on Penetration Testing Tools.
Researchers at FortiGuard Labs have documented a new campaign deploying the MostereRAT remote access trojan, which targets Windows
The post MostereRAT: The New Trojan Using Legitimate Tools to Attack appeared first on Penetration Testing Tools.