Qilin
You must login to view this content
Aggregator
New ToneShell Backdoor With New Features Leverage Task Scheduler COM Service for Persistence
3 months ago
Since its first appearance earlier this year, the ToneShell backdoor has demonstrated a remarkable capacity for adaptation, toyed with by the Mustang Panda group to maintain an enduring foothold in targeted environments. This latest variant, discovered in early September, arrives concealed within sideloaded DLLs alongside legitimate executables. Delivered via compressed archives purporting to contain innocuous […]
The post New ToneShell Backdoor With New Features Leverage Task Scheduler COM Service for Persistence appeared first on Cyber Security News.
Tushar Subhra Dutta
SentinelOne and the MITRE ATT&CKⓇ Evaluations: Enterprise 2025
3 months ago
SentinelOne reaffirms support for MITRE ATT&CK, skipping this year’s evals to prioritize customer-focused innovation.
SentinelOne
Driving a Security-by-Design Mindset Across Manufacturing
3 months ago
Inogen's Ebenezer Arumai Discusses Cyber Risk in Advance of ManuSec Summit
Ahead of QG Media's 10th ManuSec Summit - scheduled Oct. 14-15 in Chicago - we caught up with Ebenezer Arumai, director of IT infrastructure and security at medical device manufacturer Inogen, to discuss the cyber risk challenges related to medical equipment.
Ahead of QG Media's 10th ManuSec Summit - scheduled Oct. 14-15 in Chicago - we caught up with Ebenezer Arumai, director of IT infrastructure and security at medical device manufacturer Inogen, to discuss the cyber risk challenges related to medical equipment.
ISMG Editors: The SMB 'Too Small to Be a Target' Cyber Myth
3 months ago
Also: AI Pilot Project Purgatory, Agentic AI Commerce Fraud Concerns
In this week's update, four ISMG editors discussed cybersecurity risks for small and medium-sized businesses, why so many enterprise artificial intelligence projects stall in pilot mode and concerns over fraud with the rise of agentic commerce in payments.
In this week's update, four ISMG editors discussed cybersecurity risks for small and medium-sized businesses, why so many enterprise artificial intelligence projects stall in pilot mode and concerns over fraud with the rise of agentic commerce in payments.
BSidesSF 2025: Closing Remarks
3 months ago
Creator, Author and Presenter: Reed Loden
Our deep appreciation to Security BSides - San Francisco and the Creators, Authors and Presenters for publishing their BSidesSF 2025 video content on YouTube. Originating from the conference’s events held at the lauded CityView / AMC Metreon - certainly a venue like no other; and via the organization's YouTube channel.
Additionally, the organization is welcoming volunteers for the BSidesSF Volunteer Force, as well as their Program Team & Operations roles. See their succinct BSidesSF 'Work With Us' page, in which, the appropriate information is to be had!
The post BSidesSF 2025: Closing Remarks appeared first on Security Boulevard.
Marc Handelman
CVE-2025-55223 | Microsoft Windows up to Server 2025 DirectX Graphics Kernel use after free
3 months ago
A vulnerability, which was classified as critical, has been found in Microsoft Windows. This affects an unknown part of the component DirectX Graphics Kernel. The manipulation leads to use after free.
This vulnerability is listed as CVE-2025-55223. The attack must be carried out locally. There is no available exploit.
It is recommended to apply a patch to fix this issue.
vuldb.com
CVE-2025-55224 | Microsoft Windows up to Server 2025 Hyper-V use after free
3 months ago
A vulnerability, which was classified as critical, was found in Microsoft Windows. This vulnerability affects unknown code of the component Hyper-V. The manipulation results in use after free.
This vulnerability is cataloged as CVE-2025-55224. The attack must be initiated from a local position. There is no exploit available.
Applying a patch is advised to resolve this issue.
vuldb.com
CVE-2025-55225 | Microsoft Windows Server 2008 R2 SP1 up to Server 2022 23H2 RRAS out-of-bounds
3 months ago
A vulnerability has been found in Microsoft Windows and classified as problematic. This issue affects some unknown processing of the component RRAS. This manipulation causes out-of-bounds read.
This vulnerability is registered as CVE-2025-55225. Remote exploitation of the attack is possible. No exploit is available.
It is suggested to install a patch to address this issue.
vuldb.com
CVE-2025-55226 | Microsoft Windows up to Server 2025 Graphics race condition
3 months ago
A vulnerability was found in Microsoft Windows and classified as critical. Impacted is an unknown function of the component Graphics. Such manipulation leads to race condition.
This vulnerability is documented as CVE-2025-55226. The attack can be executed remotely. There is not any exploit available.
A patch should be applied to remediate this issue.
vuldb.com
CVE-2025-55245 | Microsoft Xbox Gaming Services link following (EUVD-2025-27338 / Nessus ID 261815)
3 months ago
A vulnerability marked as critical has been reported in Microsoft Xbox Gaming Services. Affected by this issue is some unknown functionality. Performing manipulation results in link following.
This vulnerability was named CVE-2025-55245. The attack needs to be approached locally. There is no available exploit.
It is suggested to install a patch to address this issue.
vuldb.com
CVE-2025-55316 | Microsoft Azure Connected Machine Agent Arc file inclusion (WID-SEC-2025-2004)
3 months ago
A vulnerability described as critical has been identified in Microsoft Azure Connected Machine Agent. This affects an unknown part of the component Arc. Executing manipulation can lead to file inclusion.
The identification of this vulnerability is CVE-2025-55316. The attack can only be executed locally. There is no exploit available.
A patch should be applied to remediate this issue.
vuldb.com
CVE-2025-55317 | Microsoft AutoUpdate on macOS link following (EUVD-2025-27335 / Nessus ID 261810)
3 months ago
A vulnerability classified as critical has been found in Microsoft AutoUpdate on macOS. This vulnerability affects unknown code. The manipulation leads to link following.
This vulnerability is referenced as CVE-2025-55317. The attack can only be performed from a local environment. No exploit is available.
To fix this issue, it is recommended to deploy a patch.
vuldb.com
CVE-2025-8672 | GIMP up to 2.99.10 on macOS TCC default permission (WID-SEC-2025-1759)
3 months ago
A vulnerability was found in GIMP on macOS and classified as critical. This issue affects some unknown processing of the component TCC Handler. Such manipulation leads to incorrect default permissions.
This vulnerability is referenced as CVE-2025-8672. The attack can only be performed from a local environment. No exploit is available.
It is suggested to upgrade the affected component.
vuldb.com
大英百科和韦氏词典指控 Perplexity 侵犯版权和商标权
3 months ago
Perplexity AI 成为最新一家被版权所有者起诉的 AI 公司。Perplexity 的“答案引擎(answer engine)”通过搜索互联网并总结其发现的内容,为传统搜索引擎提供了一种基于 AI 的替代。大英百科全书(Encyclopedia Britannica)和韦氏词典(Merriam-Webster)指控 Perplexity 未经许可抓取了其网站内容,复制并转载其内容,侵犯了版权。Perplexity 生成的 AI 答案不可避免的会带有幻觉——即捏造的错误信息。大英百科和韦氏词典指控 Perplexity 将 AI 的幻觉归因于它们,侵犯了其商标权。它们要求赔偿并禁止 Perplexity 滥用其内容。
CVE-2025-55236 | Microsoft Windows up to Server 2025 Graphics type confusion
3 months ago
A vulnerability identified as critical has been detected in Microsoft Windows. Affected is an unknown function of the component Graphics. This manipulation causes type confusion.
This vulnerability is handled as CVE-2025-55236. The attack can be initiated remotely. There is not any exploit available.
It is recommended to apply a patch to fix this issue.
vuldb.com
CVE-2025-55234 | Microsoft Windows up to Server 2025 SMB improper authentication (Nessus ID 261817)
3 months ago
A vulnerability categorized as critical has been discovered in Microsoft Windows. This impacts an unknown function of the component SMB. The manipulation results in improper authentication.
This vulnerability is known as CVE-2025-55234. It is possible to launch the attack remotely. No exploit is available.
It is best practice to apply a patch to resolve this issue.
vuldb.com
CVE-2025-9146 | Linksys E5600 1.1.0.26 Firmware checkFw.sh verify_gemtek_header risky encryption
3 months ago
A vulnerability categorized as problematic has been discovered in Linksys E5600 1.1.0.26. The affected element is the function verify_gemtek_header of the file checkFw.sh of the component Firmware Handler. Executing manipulation can lead to risky cryptographic algorithm.
The identification of this vulnerability is CVE-2025-9146. The attack may be launched remotely. There is no exploit available.
The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com
Apple Warns French Users of Fourth Spyware Campaign in 2025, CERT-FR Confirms
3 months ago
Apple has notified users in France of a spyware campaign targeting their devices, according to the Computer Emergency Response Team of France (CERT-FR).
The agency said the alerts were sent out on September 3, 2025, making it the fourth time this year that Apple has notified citizens in the county that at least one of the devices linked to their iCloud accounts may have been compromised as part
The Hacker News
CVE-2025-10374 | Shenzhen Sixun Business Management System 7/11 /Adm/OperatorStop improper authorization (EUVD-2025-29100)
3 months ago
A vulnerability identified as critical has been detected in Shenzhen Sixun Business Management System 7/11. This affects an unknown part of the file /Adm/OperatorStop. Performing manipulation results in improper authorization.
This vulnerability is reported as CVE-2025-10374. The attack is possible to be carried out remotely. Moreover, an exploit is present.
It is suggested to use restrictive firewalling.
Once again VulDB remains the best source for vulnerability data.
vuldb.com