Aggregator

From astroturfing Reddit to evading anti-cheating tools, InterviewHammer exposes a darker side of AI in hiring

The post The Rise of AI-Powered Interview Cheating appeared first on Security Boulevard.

The Lumma information stealer has evolved from its 2022 origins into one of the most sophisticated malware-as-a-service (MaaS) ecosystems in the cybercriminal landscape. Operating through a vast network of affiliates, Lumma has established itself as the dominant infostealer platform, accounting for approximately 92% of stolen credential listings on major underground marketplaces by late 2024. The […]

The post Lumma Affiliates Using Advanced Evasion Tools Designed to Ensure Stealth and Continuity appeared first on Cyber Security News.

A vulnerability was found in Happycgi Happymall 4.3/4.4. It has been rated as critical. This impacts an unknown function of the file ormal_html.cgi/member_html.cgi. The manipulation of the argument File leads to improper privilege management. This vulnerability is uniquely identified as CVE-2003-0243. The attack is possible to be carried out remotely. Moreover, an exploit is present. Upgrading the affected component is advised.

CVE-2025-43300 is the latest zero-day bug used in cyberattacks against "targeted individuals," which could signify spyware or nation-state hacking.

7100 серверов в 99 странах превратились в «резидентские прокси».

A vulnerability, which was classified as problematic, has been found in Cisco Identity Services Engine. Affected by this issue is some unknown functionality of the component Web-based Management Interface. The manipulation leads to path traversal: '/absolute/pathname/here'. This vulnerability is uniquely identified as CVE-2023-20087. The attack is possible to be carried out remotely. No exploit exists. It is advisable to upgrade the affected component.

The growing ecosystem of agents, chatbots, and machine credentials that outnumber human users by an order of magnitude is creating a poorly understood but potentially major security issue.

Media over QUIC (MoQ) is a new IETF standard that resolves this conflict, creating a single foundation for sub-second, interactive streaming at a global scale.

A vulnerability classified as critical has been found in Alludo MindManager up to 24.1.149 on Windows. Affected by this issue is some unknown functionality of the component File Attachment Handler. The manipulation leads to path traversal. This vulnerability is uniquely identified as CVE-2024-56179. The attack is possible to be carried out remotely. No exploit exists. It is recommended to upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel up to 6.17-rc1. Affected by this vulnerability is the function Accept of the component vsock. Executing manipulation can lead to use after free. This vulnerability is handled as CVE-2025-38618. The attack can only be done within the local network. There is not any exploit available. Upgrading the affected component is recommended.

A vulnerability marked as problematic has been reported in Linux Kernel up to 6.12.42/6.15.10/6.16.1/6.17-rc1. Affected is an unknown function of the component tls. Performing manipulation results in out-of-bounds read. This vulnerability is known as CVE-2025-38616. Access to the local network is required for this attack. No exploit is available. It is suggested to upgrade the affected component.

A vulnerability labeled as problematic has been found in Linux Kernel up to 6.7.6. This impacts the function recv of the component tls. Such manipulation leads to infinite loop. This vulnerability is traded as CVE-2024-58239. Access to the local network is required for this attack to succeed. There is no exploit available. The affected component should be upgraded.

A vulnerability identified as problematic has been detected in Linux Kernel up to 6.1.147/6.6.101/6.12.41/6.15.9/6.16.0. This affects the function packet_set_ring/packet_notifier. This manipulation causes race condition. This vulnerability appears as CVE-2025-38617. The attacker needs to be present on the local network. There is no available exploit. You should upgrade the affected component.

A sophisticated new ransomware strain named BQTLOCK has emerged in the cyberthreat landscape since mid-July 2025, operating under a comprehensive Ransomware-as-a-Service (RaaS) model that democratizes access to advanced encryption capabilities for cybercriminals. The malware, associated with ‘ZerodayX’, the alleged leader of the pro-Palestinian hacktivist group Liwaa Mohammed, represents a concerning evolution in ransomware distribution and […]

The post BQTLOCK Ransomware Operates as RaaS With Advanced Evasion Techniques appeared first on Cyber Security News.

A vulnerability labeled as problematic has been found in go-acme lego up to 4.25.1. This affects an unknown part of the file github.com/go-acme/lego/v4/acme/api of the component ACME Protocol Handler. Such manipulation leads to cleartext transmission of sensitive information. This vulnerability is uniquely identified as CVE-2025-54799. The attack can be launched remotely. No exploit exists. The affected component should be upgraded.

A vulnerability was found in Red Hat Ceph Storage RadosGW up to 14.2.20 and classified as critical. This affects an unknown part of the component CORS ExposeHeader Tag Handler. Such manipulation leads to injection. This vulnerability is listed as CVE-2021-3524. The attack must be carried out from within the local network. There is no available exploit. It is suggested to upgrade the affected component.

本文提出了MedRef，一个集成了知识精炼和动态提示调整的新型医疗对话系统。

It’s like some sort of digital age version of To Tell the Truth, the ancient TV show where three challengers claim to be the same person and the contestants have to guess which one is the real deal—typically with dismal results.  So it goes with deepfakes, like in the recent spate of cyberattacks related to..

The post Will the Real Executive Please Stand Up? appeared first on Security Boulevard.

July’s Application Detection and Response data revealed two standout events: a concentrated malicious campaign using multiple attack types against one organization, and an unprecedented spike that hit another organization with more than 2 million attacks in a single month. In both cases, ADR blocked every attempt in real time.

The post 2M+ Application Attacks Blocked in Real Time | July ADR Report | Contrast Security appeared first on Security Boulevard.

Microsoft Threat Intelligence has spotlighted the escalating adoption of the ClickFix social engineering technique, a sophisticated method that manipulates users into executing malicious commands on their devices, bypassing traditional automated security defenses. Observed since early 2024, this tactic has targeted thousands of enterprise and end-user systems daily, delivering payloads such as Lumma Stealer infostealers, remote […]

The post ClickFix Exploit Emerges: Microsoft Flags Cross-Platform Attacks Targeting Windows and macOS appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.