New China APT Strikes With Precision and Persistence
Phantom Taurus demonstrates a deep understanding of Windows environments, including advanced components like IIServerCore, a fileless backdoor that executes in memory to evade detection.
Aggregator
VMware Workstation Guest-to-Host Escape Exploit Development
8 months 3 weeks ago
Voice Impersonation and DeepFake Vishing in Realtime
8 months 3 weeks ago
Enhance Your Cyber Resilience with Capable NHIs
8 months 3 weeks ago
Are Your Machine Identities As Secure as They Should Be? Machine identities—or Non-Human Identities (NHIs)—are akin to digital citizens journeying across the interconnected landscape of an organization’s network. But how secure are these travelers on their digital voyages? The answer hinges on how effectively their identities and secrets are managed, a concern that’s integral for […]
The post Enhance Your Cyber Resilience with Capable NHIs appeared first on Entro.
The post Enhance Your Cyber Resilience with Capable NHIs appeared first on Security Boulevard.
Alison Mack
CVE-2025-10659 | MegaSys Telenium Online Web Application up to 8.4.21 PHP Endpoint os command injection (icsa-25-273-01)
8 months 3 weeks ago
A vulnerability has been found in MegaSys Telenium Online Web Application up to 8.4.21 and classified as critical. This affects an unknown function of the component PHP Endpoint. This manipulation causes os command injection.
This vulnerability is registered as CVE-2025-10659. Remote exploitation of the attack is possible. No exploit is available.
vuldb.com
North Korea IT worker scheme expanding to more industries, countries outside of US tech sector
8 months 3 weeks ago
Okta said their new research into the scheme revealed that North Korea has honed its skills on U.S.-based companies and has expanded into dozens of different countries and industries.
'Klopatra' Trojan Makes Bank Transfers While You Sleep
8 months 3 weeks ago
A sophisticated new banking malware is hard to detect, capable of stealing lots of money, and infecting thousands of people in Italy and Spain.
Nate Nelson, Contributing Writer
JGroup
8 months 3 weeks ago
You must login to view this content
cohenido
CVE-2025-9869 | Razer Synapse 3 Macro link following
8 months 3 weeks ago
A vulnerability, which was classified as critical, was found in Razer Synapse 3. The impacted element is an unknown function of the component Macro Module. The manipulation results in link following.
This vulnerability is cataloged as CVE-2025-9869. The attack must be initiated from a local position. There is no exploit available.
You should upgrade the affected component.
vuldb.com
CVE-2025-9871 | Razer Synapse 3 Chrome Connect link following
8 months 3 weeks ago
A vulnerability, which was classified as critical, has been found in Razer Synapse 3. The affected element is an unknown function of the component Chrome Connect. The manipulation leads to link following.
This vulnerability is listed as CVE-2025-9871. The attack must be carried out locally. There is no available exploit.
It is advisable to upgrade the affected component.
vuldb.com
CVE-2025-56392 | Syaqui Collegetivity 1.0.0 HTTP POST Request /dashboard/notes resource injection (EUVD-2025-31773)
8 months 3 weeks ago
A vulnerability classified as critical was found in Syaqui Collegetivity 1.0.0. Impacted is an unknown function of the file /dashboard/notes of the component HTTP POST Request Handler. Executing manipulation can lead to improper control of resource identifiers.
This vulnerability is tracked as CVE-2025-56392. The attack can be launched remotely. No exploit exists.
vuldb.com
CVE-2025-9870 | Razer Synapse 3 RazerPhilipsHueUninstall Local Privilege Escalation
8 months 3 weeks ago
A vulnerability classified as critical has been found in Razer Synapse 3. This issue affects the function RazerPhilipsHueUninstall. Performing manipulation results in Local Privilege Escalation.
This vulnerability is identified as CVE-2025-9870. The attack is only possible with local access. There is not any exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-36132 | IBM Planning Analytics Local up to 2.0.106/2.1.13 Web UI cross site scripting
8 months 3 weeks ago
A vulnerability described as problematic has been identified in IBM Planning Analytics Local up to 2.0.106/2.1.13. This vulnerability affects unknown code of the component Web UI. Such manipulation leads to cross site scripting.
This vulnerability is referenced as CVE-2025-36132. It is possible to launch the attack remotely. No exploit is available.
Upgrading the affected component is recommended.
vuldb.com
CVE-2025-36262 | IBM Planning Analytics Local up to 2.0.106/2.1.13 improper validation of syntactic correctness of input
8 months 3 weeks ago
A vulnerability marked as problematic has been reported in IBM Planning Analytics Local up to 2.0.106/2.1.13. This affects an unknown part. This manipulation causes improper validation of syntactic correctness of input.
The identification of this vulnerability is CVE-2025-36262. It is possible to initiate the attack remotely. There is no exploit available.
It is suggested to upgrade the affected component.
vuldb.com
DragonForce
8 months 3 weeks ago
You must login to view this content
cohenido
Sendit sued by the FTC for illegal collection of children data
8 months 3 weeks ago
The Federal Trade Commission (FTC) is suing Sendit's operating company and its CEO for unlawful collection of data from underage users, as well as deceptive subscription practices. [...]
Bill Toulas
Imperva Enhances Client-Side Protection to Help You Stay Ahead of PCI-DSS Compliance
8 months 3 weeks ago
When the latest PCI DSS 4.0 requirements came into full effect in March 2025, organizations processing cardholder data faced new obligations to protect payment pages from client-side risks. Requirements such as 6.4.3 (script inventory, authorization, and integrity monitoring) and 11.6.1 (detection of unauthorized changes) demanded stronger visibility and control than many teams had in place. […]
The post Imperva Enhances Client-Side Protection to Help You Stay Ahead of PCI-DSS Compliance appeared first on Blog.
The post Imperva Enhances Client-Side Protection to Help You Stay Ahead of PCI-DSS Compliance appeared first on Security Boulevard.
Grainne McKeever
CISA Warns of Libraesva ESG Command Injection Vulnerability Actively Exploited in Attacks
8 months 3 weeks ago
In late September 2025, the Cybersecurity and Infrastructure Security Agency (CISA) issued a public alert regarding the active exploitation of a critical command injection vulnerability tracked as CVE-2025-59689 in Libraesva Email Security Gateway (ESG) devices. This flaw has rapidly emerged as a favored target for threat actors due to its ease of exploitation and the […]
The post CISA Warns of Libraesva ESG Command Injection Vulnerability Actively Exploited in Attacks appeared first on Cyber Security News.
Tushar Subhra Dutta
China Exploited New VMware Bug for Nearly a Year
8 months 3 weeks ago
A seemingly benign privilege-escalation process in VMware and other software has likely benefited attackers and other malware strains for years, researchers noted.
Alexander Culafi
Foremost Asset Management Falls Victim to Qilin Ransomware
8 months 3 weeks ago
Foremost Asset Management Falls Victim to Qilin Ransomware
Dark Web Informer