Widespread Campaign Targets Cybercriminals and Gamers
Sophos has uncovered a scheme planting malicious code in 130+ GitHub repositories, targeting hackers and gamers
Aggregator
CVE-2025-5647 | Radare2 5.9.9 radiff2 /libr/cons/cons.c r_cons_context_break_pop -T memory corruption (Issue 24237)
3 months 2 weeks ago
A vulnerability was found in Radare2 5.9.9 and classified as problematic. This issue affects the function r_cons_context_break_pop in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption.
The identification of this vulnerability is CVE-2025-5647. The attack needs to be approached locally. Furthermore, there is an exploit available.
The real existence of this vulnerability is still doubted at the moment.
It is recommended to apply a patch to fix this issue.
The documentation explains that the parameter -T is experimental and "crashy". Further analysis has shown "the race is not a real problem unless you use asan". A new warning has been added.
vuldb.com
Submit #586929: radare2 radiff2 5.9.9 and master branch Memory corruption [Accepted]
3 months 2 weeks ago
Submit #586929 / VDB-311136
rootsec
CVE-2025-5646 | Radare2 5.9.9 radiff2 /libr/cons/pal.c r_cons_rainbow_free -T memory corruption (Issue 24235)
3 months 2 weeks ago
A vulnerability has been found in Radare2 5.9.9 and classified as problematic. This vulnerability affects the function r_cons_rainbow_free in the library /libr/cons/pal.c of the component radiff2. The manipulation of the argument -T leads to memory corruption.
This vulnerability was named CVE-2025-5646. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.
The real existence of this vulnerability is still doubted at the moment.
It is recommended to apply a patch to fix this issue.
The documentation explains that the parameter -T is experimental and "crashy". Further analysis has shown "the race is not a real problem unless you use asan". A new warning has been added.
vuldb.com
Submit #586928: radare2 radiff2 5.9.9 and master branch Memory corruption [Accepted]
3 months 2 weeks ago
Submit #586928 / VDB-311135
rootsec
CVE-2025-5645 | Radare2 5.9.9 radiff2 /libr/cons/pal.c r_cons_pal_init -T memory corruption (Issue 24234)
3 months 2 weeks ago
A vulnerability, which was classified as problematic, was found in Radare2 5.9.9. This affects the function r_cons_pal_init in the library /libr/cons/pal.c of the component radiff2. The manipulation of the argument -T leads to memory corruption.
This vulnerability is uniquely identified as CVE-2025-5645. Attacking locally is a requirement. Furthermore, there is an exploit available.
The real existence of this vulnerability is still doubted at the moment.
It is recommended to apply a patch to fix this issue.
The documentation explains that the parameter -T is experimental and "crashy". Further analysis has shown "the race is not a real problem unless you use asan". A new warning has been added.
vuldb.com
Submit #586923: radare2 radiff2 5.9.9 and master branch Memory corruption [Accepted]
3 months 2 weeks ago
Submit #586923 / VDB-311134
rootsec
Windows Authentication Coercion Attacks Present Major Risks to Enterprise Networks
3 months 2 weeks ago
Authentication coercion remains a potent attack vector in Windows environments, enabling attackers with even low-privileged domain accounts to force targeted systems, often high-value servers or domain controllers, to authenticate to attacker-controlled hosts. This technique is closely tied to NTLM and Kerberos relay attacks, where the coerced authentication session is intercepted and relayed to other services, […]
The post Windows Authentication Coercion Attacks Present Major Risks to Enterprise Networks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Anupriya
CVE-2025-5644 | Radare2 5.9.9 radiff2 /libr/cons/cons.c r_cons_flush -T use after free (Issue 24233)
3 months 2 weeks ago
A vulnerability, which was classified as problematic, has been found in Radare2 5.9.9. Affected by this issue is the function r_cons_flush in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to use after free.
This vulnerability is handled as CVE-2025-5644. Local access is required to approach this attack. Furthermore, there is an exploit available.
The real existence of this vulnerability is still doubted at the moment.
It is recommended to apply a patch to fix this issue.
The documentation explains that the parameter -T is experimental and "crashy". Further analysis has shown "the race is not a real problem unless you use asan". A new warning has been added.
vuldb.com
Submit #586922: radare2 radiff2 5.9.9 and master branch Memory corruption [Accepted]
3 months 2 weeks ago
Submit #586922 / VDB-311133
rootsec
CVE-2025-5643 | Radare2 5.9.9 radiff2 /libr/cons/cons.c cons_stack_load -T memory corruption (Issue 24232)
3 months 2 weeks ago
A vulnerability classified as problematic was found in Radare2 5.9.9. Affected by this vulnerability is the function cons_stack_load in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption.
This vulnerability is known as CVE-2025-5643. An attack has to be approached locally. Furthermore, there is an exploit available.
The real existence of this vulnerability is still doubted at the moment.
It is recommended to apply a patch to fix this issue.
The documentation explains that the parameter -T is experimental and "crashy". Further analysis has shown "the race is not a real problem unless you use asan". A new warning has been added.
vuldb.com
诚邀渠道合作伙伴共启新征程
3 months 2 weeks ago
预警 : 病毒“黑吃黑”,GitHub开源远控项目暗藏后门
3 months 2 weeks ago
当黑产开发者以为在共享“行业秘笈”时,殊不知已经掉入了黑客布置的陷阱——看似方便的后门远程控制源码和游戏外挂源码等“圈内资源”,实则是植入了恶意代码的投毒诱饵。黑客抓住相关开发者对开源代码的信任,用“魔法”打败“魔法”,上演了一场荒诞戏码。
Submit #586921: radare2 radiff2 5.9.9 and master branch Memory corruption [Accepted]
3 months 2 weeks ago
Submit #586921 / VDB-311132
rootsec
Your SaaS Data Isn't Safe: Why Traditional DLP Solutions Fail in the Browser Era
3 months 2 weeks ago
Traditional data leakage prevention (DLP) tools aren't keeping pace with the realities of how modern businesses use SaaS applications.
Companies today rely heavily on SaaS platforms like Google Workspace, Salesforce, Slack, and generative AI tools, significantly altering the way sensitive information is handled. In these environments, data rarely appears as traditional files or crosses networks
The Hacker News
Cobalt improves pentest transparency, automation, and risk prioritization
3 months 2 weeks ago
Cobalt announced a set of product enhancements within the Cobalt Offensive Security Platform aimed at helping customers scale security testing with greater clarity, automation, and control. These innovations further the company’s commitment to deliver expert-driven, fast-to-launch pentesting, now with even richer data and streamlined workflows. The Cobalt Platform centralizes access to security services from a team of expert pentesters, making it easier to find and fix vulnerabilities across an organization’s environments. By enabling faster pentest … More →
The post Cobalt improves pentest transparency, automation, and risk prioritization appeared first on Help Net Security.
Industry News
Submit #586912: radare2 radiff2 5.9.9 and master branch Memory corruption [Accepted]
3 months 2 weeks ago
Submit #586912 / VDB-311131
rootsec
CVE-2025-5642 | Radare2 5.9.9 radiff2 /libr/cons/pal.c r_cons_pal_init memory corruption (Issue 24231)
3 months 2 weeks ago
A vulnerability classified as problematic has been found in Radare2 5.9.9. Affected is the function r_cons_pal_init in the library /libr/cons/pal.c of the component radiff2. The manipulation leads to memory corruption.
This vulnerability is traded as CVE-2025-5642. The attack needs to be approached locally. Furthermore, there is an exploit available.
The real existence of this vulnerability is still doubted at the moment.
It is recommended to apply a patch to fix this issue.
The documentation explains that the parameter -T is experimental and "crashy". Further analysis has shown "the race is not a real problem unless you use asan". A new warning has been added.
vuldb.com
INC
3 months 2 weeks ago
You must login to view this content
cohenido
Hackers Weaponize Ruby Gems To Exfiltrate Telegram Tokens and Messages
3 months 2 weeks ago
A sophisticated supply chain attack has emerged targeting the RubyGems ecosystem, exploiting geopolitical tensions surrounding Vietnam’s recent Telegram ban to steal sensitive developer credentials and communications. The malicious campaign involves two typosquatted Ruby gems designed to impersonate legitimate Fastlane plugins, silently redirecting Telegram API traffic through attacker-controlled infrastructure to harvest bot tokens, message content, and […]
The post Hackers Weaponize Ruby Gems To Exfiltrate Telegram Tokens and Messages appeared first on Cyber Security News.
Tushar Subhra Dutta