Aggregator

The complaint follows several enforcement actions and bans from European data protection authorities that the advocacy group noyb alleges Clearview AI has ignored.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2. Affected by this issue is the function run_unpack of the component ntfs3. The manipulation results in integer overflow. This vulnerability is identified as CVE-2025-40068. The attack can only be performed from the local network. There is not any exploit available. You should upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2. Affected by this vulnerability is the function PERF_IDX2OFF of the component perf. The manipulation leads to buffer overflow. This vulnerability is referenced as CVE-2025-40081. The attack needs to be initiated within the local network. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2. Affected is the function bpf_sock_addr. Executing manipulation can lead to privilege escalation. The identification of this vulnerability is CVE-2025-40078. The attack needs to be done within the local network. There is no exploit available. Upgrading the affected component is advised.

A vulnerability classified as critical has been found in Linux Kernel up to 6.17.2. This impacts an unknown function. Performing manipulation results in memory leak. This vulnerability was named CVE-2025-40069. The attack needs to be approached within the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel up to 6.17.2. This affects the function mt7996_mac_sta_add_links of the component wifi. Such manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2025-40066. The attack can only be initiated within the local network. No exploit exists. Upgrading the affected component is recommended.

A vulnerability marked as critical has been reported in Linux Kernel up to 6.1.155/6.6.111/6.12.52/6.17.2. The impacted element is the function qm_diff_regs of the component crypto. This manipulation causes improper initialization. This vulnerability is handled as CVE-2025-40062. The attack can only be done within the local network. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability labeled as critical has been found in Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2. The affected element is the function etm_setup_aux of the component TRBE Driver. The manipulation results in null pointer dereference. This vulnerability is known as CVE-2025-40060. Access to the local network is required for this attack. No exploit is available. The affected component should be upgraded.

A vulnerability identified as critical has been detected in Linux Kernel up to 6.12.52/6.17.2. Impacted is the function devm_kzalloc of the component coresight. The manipulation of the argument return leads to unchecked return value. This vulnerability is traded as CVE-2025-40059. Access to the local network is required for this attack to succeed. There is no exploit available. You should upgrade the affected component.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 6.12.52/6.17.2. This issue affects the function max_vclocks of the component ptp. Executing manipulation of the argument max can lead to privilege escalation. This vulnerability appears as CVE-2025-40057. The attacker needs to be present on the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.155/6.6.111/6.12.52/6.17.2. It has been rated as critical. This vulnerability affects the function copy_to_iter of the component vhost. Performing manipulation of the argument return results in unchecked return value. This vulnerability is reported as CVE-2025-40056. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is advised.

A critical security flaw in Microsoft's WSUS feature is being actively exploited in the wild by threat actors who could gain access into unpatched servers, remotely control networks, and use them to deliver malware or do other damage. Microsoft is urging organizations to apply a patch to their systems.

The post Critical Microsoft WSUS Security Flaw is Being Actively Exploited appeared first on Security Boulevard.

统计数据显示，向勒索软件组织支付赎金的受害者数量创下了新低，23% 的受害公司屈服支付了赎金，而在 2024 年第一季度这一比例是 28%，此后比例略有上升，但到了 2025 年第三季度创新低。对这一现象的一种解释是企业加大了防御力度，以及政府也施加了压力要求拒绝支付赎金，因为只要支付赎金勒索软件组织就有足够的动机继续发动攻击。勒索软件组织通常在加密受害者系统的同时窃取数据，进行双重勒索。数据显示，2025 年第三季度逾 76% 的攻击涉及数据泄露。2025 年第三季度支持的赎金平均金额和中位数分别降至 37.7 万美元和 14 万美元。Akira 和 Qilin 等勒索软件组织占到了所有有记录攻击的 44%，它们的攻击目标已经转向更有可能支付赎金的中型企业。

Cobalt has undergone a large-scale expansion of its Cobalt Offensive Security Platform to transform offensive security from ad-hoc tests into a continuous, centrally managed program. The human led, AI-powered platform provides the visibility, control, and efficiency needed to secure organizations, from code to company, at scale. According to the 2025 Gartner Innovation Insight: Penetration Testing as a Service report, “by 2029, organizations adopting PTaaS will perform penetration testing up to five times more frequently than … More →

The post Cobalt transforms ad-hoc security testing into a continuous, managed program appeared first on Help Net Security.

Ведомство требует экстренных мер против поддельных звонков в 23 странах.

Nozomi Networks announced a cybersecurity solution designed to safely automate threat response in operational environments. With the latest release of Nozomi Arc, users gain automated threat prevention capabilities for OT endpoints. First launched in 2023, Nozomi Arc is the endpoint security and network monitoring solution specifically designed to meet both the cybersecurity and operational requirements of OT and IoT environments. Arc is a key component of the Nozomi platform, and extends Nozomi’s defenses to Windows, … More →

The post Nozomi Networks enhances OT security with latest Arc release appeared first on Help Net Security.

A new Python-based infostealer called RedTiger is targeting Discord gamers to steal authentication tokens, passwords, and payment information. Learn how the malware works, its evasion tactics, and essential security steps like enabling MFA.

通过AI方法深化乌克兰国防情报国际军团的开源情报分析，探索AI在复杂战争信息环境中的应用潜力和方法论价值。AI显著增强了OSINT分析中信息处理的深度和广度。它在错误信息检测准确性、多语言关键字提取效率和风险模式预测能力方面优于传统方法。

How to choose an external attack surface management (EASM) tool that’s right for your organisation.