Aggregator

Security researchers at Aon have discovered a threat actor who bypassed SentinelOne EDR protection to deploy Babuk ransomware

A vulnerability was found in Radware Cloud Web Application Firewall. It has been declared as critical. This vulnerability affects unknown code of the component Special Character Handler. The manipulation leads to improper access controls. This vulnerability was named CVE-2024-56524. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Radware Cloud Web Application Firewall. It has been classified as critical. This affects an unknown part of the component HTTP GET Request Handler. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2024-56523. It is possible to initiate the attack remotely. There is no exploit available.

ServiceNow launched a new, agentic chapter in enterprise security and risk, introducing AI agents to power the rise of self-defending enterprises. The new agents, available within ServiceNow’s Security and Risk solutions, are designed to improve consistency, identify insights, and reduce response times. Partnerships with Microsoft and Cisco, along with expanded security and compliance capabilities from ServiceNow, accelerate the shift from reactive defense to autonomous resilience, providing organizations with robust, efficient, and ethical solutions. Today, threats … More →

The post ServiceNow unveils AI agents to accelerate enterprise self-defense appeared first on Help Net Security.

Вымогатели грозили всему миру, а сдал их уязвимый PHP.

ProcessUnity introduced Evidence Evaluator, an generative AI that reduces the manual lift of assessing and validating third-party security controls. A key component of ProcessUnity’s Third-Party Risk Management (TPRM) Platform, Evidence Evaluator automatically reviews third-party evidence and populates assessment responses complete with references to the specified evidence in the source documents. For third-party risk teams overwhelmed by the hours spent reading security policies, SOC 2 reports, ISO 27001 certifications, and other evidentiary documentation, Evidence Evaluator delivers … More →

The post ProcessUnity Evidence Evaluator flags discrepancies in a third-party’s controls appeared first on Help Net Security.

Polish police arrested 4 people behind DDoS-for-hire platforms used in global attacks, offering takedowns for as little as €10 via six stresser services. Polish authorities arrested 4 people linked to 6 DDoS-for-hire platforms, Cfxapi, Cfxsecurity, neostress, jetstress, quickdown, and zapcut, used to launch attacks worldwide for as little as €10. The platforms were used to […]

近日，作者收集到一批恶意钓鱼邮件，大多数由html，pdf，svg的文件格式上传发送至企业邮箱中，通常情况下大多数恶意邮件都会被outlook，gmail等放入垃圾箱，但这些附件却顺利进入到了企业员工的收件箱中，经过作者研究是进行了混淆技术的复用与重定向，绕过了邮箱检测机制，下面针对svg格式的附件技术细节进行阐述

Мессенджер без допуска и сертификации стал инструментом в правительстве и CBP.

A vulnerability was found in Linux Kernel and classified as critical. Affected by this issue is the function niu_try_msix. The manipulation leads to denial of service. This vulnerability is handled as CVE-2025-37833. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.12.25/6.14.4 and classified as critical. Affected by this vulnerability is the function me_swapcache_dirty of the component vmscan. The manipulation leads to improper update of reference count. This vulnerability is known as CVE-2025-37834. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.15-rc3. Affected is the function scmi_cpufreq_get_rate of the component cpufreq. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2025-37830. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.12.25/6.14.4/6.15-rc3. This issue affects the function nvmem_cell_read of the component Cpufreq Driver. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2025-37832. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.15-rc3. This vulnerability affects the function scpi_cpufreq_get_rate of the component cpufreq. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2025-37829. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.15-rc3. This affects the function hfsc_dequeue of the component net_sched. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2025-37823. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.88/6.12.25/6.14.4/6.15-rc3. It has been rated as critical. Affected by this issue is the function gicv2m_get_fwnode. The manipulation leads to use after free. This vulnerability is handled as CVE-2025-37819. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.135/6.6.88/6.12.25/6.14.4/6.15-rc3. It has been declared as critical. Affected by this vulnerability is the function huge_pte_offset of the component LoongArch. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2025-37818. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.15-rc3. It has been classified as problematic. Affected is the function chameleon_parse_gdd of the component mcb. The manipulation leads to double free. This vulnerability is traded as CVE-2025-37817. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.88/6.12.25/6.14.4/6.15-rc3/4725344ca645a98a9d8e45e25b01a2244de5b8aa and classified as critical. This issue affects the function prepare_transfer of the component xhci. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2025-37813. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.15-rc3 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2025-37810. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.