Aggregator

CVE-2024-53298 | Dell PowerScale OneFS up to 9.10.0.1 NFS Export authorization (dsa-2025-208 / EUVD-2024-54692)

Vuldb Updates
5 months 3 weeks ago
A vulnerability classified as very critical has been found in Dell PowerScale OneFS up to 9.10.0.1. This affects an unknown part of the component NFS Export. The manipulation leads to missing authorization. This vulnerability is uniquely identified as CVE-2024-53298. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-33117 | IBM QRadar SIEM up to 7.5.0 Update Package 12 file inclusion (EUVD-2025-18994)

Vuldb Updates
5 months 3 weeks ago
A vulnerability has been found in IBM QRadar SIEM up to 7.5.0 Update Package 12 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to file inclusion. This vulnerability is known as CVE-2025-33117. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

玻璃瓶瓶盖显著增加了饮料中的微塑料含量

Solidot
5 months 3 weeks ago
法国食品、环境和职业健康与安全局(ANSES)发表研究报告,所有饮料都含有微塑料,但玻璃瓶装饮料的微塑料颗粒含量显著高于塑料瓶、纸盒或罐装饮料。对各种包装的饮料的检测发现,玻璃瓶装软饮料、柠檬水、冰茶和啤酒中平均每升含有 100 个微塑料颗粒,是塑料瓶或金属罐装饮料的 5-50 倍。科学家推测,玻璃瓶装饮料的塑料颗粒可能来自瓶盖上的塑料涂层。瓶盖可能是在运输过程中因为摩擦等导致了塑料颗粒脱落。制造商可采取措施减少塑料颗粒的脱落。

100 dronedetectieradars in nieuw steunpakket voor Oekraïne

Defensie.nl - Nieuwsberichten
5 months 3 weeks ago
Nederland doneert 100 aanvullende dronedetectieradars aan Oekraïne. Ook gaan er voertuigen voor gewondenvervoer naar het land. Verder steekt Nederland extra geld in de steun met drones. Het gaat om een steunpakket van in totaal ongeveer €175 miljoen. Dit komt bovenop contracten die deze dagen ondertekend zijn met de Oekraïense industrie om voor €500 miljoen drones te produceren. Dat maakte minister Ruben Brekelmans vandaag bekend voorafgaand aan het NATO Summit Defence Industry Forum in Den Haag.

CVE-2025-24076 | Microsoft Windows Cross Device Service access control (EDB-52320)

Vuldb Updates
5 months 3 weeks ago
A vulnerability was found in Microsoft Windows 11 22H2/11 23H2/11 24H2/Server 2022 23H2/Server 2025. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Cross Device Service. The manipulation leads to improper access controls. This vulnerability is known as CVE-2025-24076. Local access is required to approach this attack. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.
vuldb.com

U.S. warns of incoming cyber threats following Iran airstrikes

Security Affairs
5 months 3 weeks ago
U.S. warns of cyberattacks by pro-Iranian groups after launching airstrikes on Iran’s nuclear sites amid the Iran –Israel war starting June 13, 2025. The Iran conflict raises cyber threat levels in the U.S., with likely low-level attacks by pro-Iranian hacktivists and possible state-linked cyber activity. Following U.S. strikes on Iranian nuclear sites, President Trump called […]
Pierluigi Paganini

CoinMarketCap Hacked: “Doodle” Graphic Delivers Wallet Drainer, $43K+ Stolen

Penetration Testing Tools - Metepreter.org
5 months 3 weeks ago

One of the world’s leading cryptocurrency tracking platforms, CoinMarketCap, has fallen victim to a sophisticated cyberattack. Visitors to the site were unexpectedly confronted with intrusive Web3 pop-ups, seemingly inviting them to connect their wallets....

The post CoinMarketCap Hacked: “Doodle” Graphic Delivers Wallet Drainer, $43K+ Stolen appeared first on Penetration Testing Tools.

ddos

SparkKitty Unleashed: New Mobile Spyware Steals Crypto Seed Phrases from Your Photos

Penetration Testing Tools - Metepreter.org
5 months 3 weeks ago

Your personal photographs are increasingly becoming the target of malicious actors. Smartphones have long since evolved from mere communication tools into vast repositories of intimate data—ranging from vacation plans and cherished family photos to...

The post SparkKitty Unleashed: New Mobile Spyware Steals Crypto Seed Phrases from Your Photos appeared first on Penetration Testing Tools.

ddos

NSFOCUS was Selected as a Representative Provider of Gartner® “Innovation Insight: Adversarial Exposure Validation in China”

Security Boulevard
5 months 3 weeks ago

SANTA CLARA, Calif., June 24, 2025 – Recently, Gartner released the 2025 “Innovation Insight: Adversarial Exposure Validation in China”¹, NSFOCUS was selected as a Representative Provider for its adversarial exposure validation (AEV) capability in the continuous threat exposure management (CTEM) service. Why has ASM become a pain point for enterprises? Asset data is scattered and lacks […]

The post NSFOCUS was Selected as a Representative Provider of Gartner® “Innovation Insight: Adversarial Exposure Validation in China” appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks..

The post NSFOCUS was Selected as a Representative Provider of Gartner® “Innovation Insight: Adversarial Exposure Validation in China” appeared first on Security Boulevard.

NSFOCUS

Qilin Ransomware Adds “Call Lawyer” Feature to Pressure Victims for Ransoms

Penetration Testing Tools - Metepreter.org
5 months 3 weeks ago

The cybercriminal syndicate Qilin, known for its Ransomware-as-a-Service (RaaS) operations, has introduced a new tactic aimed at intensifying pressure on victims—its affiliates can now request legal assistance directly through the group’s internal control panel....

The post Qilin Ransomware Adds “Call Lawyer” Feature to Pressure Victims for Ransoms appeared first on Penetration Testing Tools.

ddos

Managed ad