Aggregator

Cybersecurity researchers have discovered a new malvertising campaign that's designed to infect victims with a multi-stage malware framework called PS1Bot. "PS1Bot features a modular design, with several modules delivered used to perform a variety of malicious activities on infected systems, including information theft, keylogging, reconnaissance, and the establishment of persistent system

A critical RCE vulnerability in Erlang’s OTP SSH daemon has been identified that allows unauthenticated command execution

Bronbeek stond vandaag stil bij de slachtoffers van de oorlog in Nederlands-Indië. Daarnaast eert het museum dit jaar, 80 jaar na de bevrijding, onbekende helden zoals Pieter de Kock. Zijn moed in het regenwoud van Nieuw-Guinea werd een symbool van verzet.

​AI 驱动的「印钞机」再提速。

Инженеры создали летающую тележку для перевозки клеток и микросхем без прикосновений.

If you think phishing is just clicking a bad link and landing on a fake login page, Tycoon2FA will prove you wrong. This new wave of phishing-as-a-service isn’t playing the old game anymore; it’s running a 7-stage obstacle course built to wear down both humans and machines. It’s already slipping past trusted security tools. If […]

The post New Multi-Stage Tycoon2FA Phishing Attack Now Beats Top Security Systems appeared first on Cyber Security News.

Google 向美国和印度用户推出名为“Preferred Sources”的新功能，允许用户从搜索结果中选择自己喜欢的新闻网站和博客，之后用户会在搜索结果中看到更多来自自己喜欢内容源的内容。但 Google 此举被认为和社交平台算法类似，限制用户的选择，将用户困住回音室里，而高质量的搜索结果需要的是更多元化的内容源，而不是更少的内容源。用户搜索需要的不是偏爱的内容源，而是减少低质量的内容源，用黑名单限制低质量内容源。

A vulnerability was found in Linux Kernel up to 6.12.13/6.13.2 and classified as critical. Affected by this issue is some unknown functionality of the component gsp. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2024-58019. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.13/6.13.2. It has been classified as critical. Affected is the function r535_gsp_cmdq_push of the file drivers/gpu/drm/nouveau/nvkm/subdev/gsp/r535.c. The manipulation leads to buffer overflow. This vulnerability is traded as CVE-2024-58018. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.128/6.6.77/6.12.13/6.13.2. This issue affects the function handle_policy_update of the component safesetid. The manipulation leads to buffer overflow. The identification of this vulnerability is CVE-2024-58016. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.1.128/6.6.77/6.12.13/6.13.2. Affected is an unknown function of the component printk. The manipulation of the argument LOG_BUF_LEN_MAX leads to integer overflow. This vulnerability is traded as CVE-2024-58017. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.13.2 and classified as problematic. Affected by this vulnerability is the function print_array_to_buf_index. The manipulation of the argument length leads to out-of-bounds read. This vulnerability is known as CVE-2024-58015. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.128/6.6.77/6.12.13/6.13.2. It has been rated as problematic. Affected by this issue is the function wlc_phy_iqcal_gainparams_nphy of the component brcmsmac. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2024-58014. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.128/6.6.77/6.12.13/6.13.2 and classified as critical. This issue affects the function mgmt_remove_adv_monitor_sync of the component Bluetooth. The manipulation leads to use after free. The identification of this vulnerability is CVE-2024-58013. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.12.13/6.13.2. This affects an unknown part of the component ASoC. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2024-58012. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.128/6.6.77/6.12.13/6.13.2. Affected by this issue is the function skl_int3472_get_acpi_buffer of the component x86. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2024-58011. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

German Manufacturing Company Data Sale, 188,000+ Records Allegedly for Sale

A vulnerability was found in Wireshark up to 3.6.12/4.0.4. It has been classified as problematic. Affected is an unknown function of the component RPCoRDMA Dissector. The manipulation leads to denial of service. This vulnerability is traded as CVE-2023-1992. It is possible to launch the attack remotely. There is no exploit available.

История о том, как спецслужбы спрятали GPS прямо в сердце серверов.

Creator, Author and Presenter: Mabel Soe

Our deep appreciation to Security BSides - San Francisco and the Creators, Authors and Presenters for publishing their BSidesSF 2025 video content on YouTube. Originating from the conference’s events held at the lauded CityView / AMC Metreon - certainly a venue like no other; and via the organization's YouTube channel.

Additionally, the organization is welcoming volunteers for the BSidesSF Volunteer Force, as well as their Program Team & Operations roles. See their succinct BSidesSF 'Work With Us' page, in which, the appropriate information is to be had!

Permalink

The post BSidesSF 2025: Fake Hires, Real Threats: When Background Checks Aren’t Enough appeared first on Security Boulevard.