Aggregator
McLaren Health Care says data breach impacts 743,000 patients
CVE-2025-6532 | NOYAFA/Xiami LF9 Pro up to 20250611 RTSP Live Video Stream Endpoint access control (EUVD-2025-18962)
APT36 Hackers Attacking Indian Defense Personnel in Sophisticated Phishing Attack
A Pakistan-based cyber espionage group known as APT36 or Transparent Tribe has launched a highly sophisticated phishing campaign targeting Indian defense personnel, utilizing credential-stealing malware designed to establish long-term infiltration within sensitive military networks. The campaign represents a significant escalation in nation-state cyber threats, employing advanced social engineering techniques that exploit the trust inherent in […]
The post APT36 Hackers Attacking Indian Defense Personnel in Sophisticated Phishing Attack appeared first on Cyber Security News.
Linux Firewall IPFire 2.29 Core Update 195 Released With VPN Protocol Support
IPFire has released Core Update 195 for version 2.29, marking a significant milestone with the introduction of native WireGuard VPN protocol support. This highly anticipated update transforms the open-source firewall distribution by integrating modern VPN capabilities alongside comprehensive security enhancements and system improvements. WireGuard VPN Integration The standout feature of IPFire 2.29 Core Update 195 […]
The post Linux Firewall IPFire 2.29 Core Update 195 Released With VPN Protocol Support appeared first on Cyber Security News.
CVE-2025-2172 | Aviatrix Controller prior 7.1.4208/7.2.5090/8.0.0 Command Line Utilities os command injection (MNDT-2025-0004 / EUVD-2025-18898)
CVE-2025-2171 | Aviatrix Controller prior 7.1.4208/7.2.5090/8.0.0 Password Reset PIN excessive authentication (MNDT-2025-0003 / EUVD-2025-18917)
Submit #595453: HiDvr dashcam LF9 Pro Improper Access Controls [Accepted]
CVE-2025-6531 | SIFUSM/MZZYG BD S1 up to 20250611 RTSP Live Video Stream Endpoint access control (EUVD-2025-18963)
CVE-2025-6530 | 70mai M300 up to 20250611 Telnet Service demo.sh denial of service (EUVD-2025-18958)
CVE-2025-6529 | 70mai M300 up to 20250611 Telnet Service default credentials (EUVD-2025-18959)
CVE-2025-6528 | 70mai M300 up to 20250611 RTSP Live Video Stream Endpoint /livestream/12 improper authentication (EUVD-2025-18960)
CVE-2025-6527 | 70mai M300 up to 20250611 Web Server access control (EUVD-2025-18955)
CVE-2025-6526 | 70mai M300 up to 20250611 HTTP Server insufficiently protected credentials (EUVD-2025-18956)
Submit #595452: BD dashcam BD S1 Improper Access Controls [Accepted]
CVE-2025-6525 | 70mai 1S up to 20250611 Configuration Config.cgi?action=set improper authorization (EUVD-2025-18957)
CVE-2025-6524 | 70mai 1S up to 20250611 Video Services improper authentication
23rd June – Threat Intelligence Report
For the latest discoveries in cyber research for the week of 23rd June, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Scania, a Swedish manufacturer of heavy trucks and engines, has suffered a data breach that resulted in the theft of insurance claim documents from its Financial Services systems via compromised credentials of […]
The post 23rd June – Threat Intelligence Report appeared first on Check Point Research.