Aggregator

A vulnerability identified as critical has been detected in Linux Kernel up to 5.10.149/5.15.74/5.19.16/6.0.2. Affected is the function debugfs_lookup of the component Greybus Audio Driver. The manipulation leads to privilege escalation. This vulnerability is documented as CVE-2022-50400. The attack requires being on the local network. There is not any exploit available. You should upgrade the affected component.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 5.15.99/6.1.17/6.2.4. This impacts the function debugfs_lookup of the file kernel/printk/index.c. Executing manipulation can lead to memory leak. This vulnerability is registered as CVE-2023-53402. The attack requires access to the local network. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.99/6.1.17/6.2.4. It has been rated as critical. This affects the function debugfs_lookup. Performing manipulation results in memory leak. This vulnerability is cataloged as CVE-2023-53405. The attack must originate from the local network. There is no exploit available. Upgrading the affected component is advised.

A vulnerability was found in Linux Kernel up to 5.10.194/5.15.131/6.1.52/6.4.15/6.5.2. It has been declared as critical. The impacted element is the function hci_remove_ltk/hci_remove_irk of the component Bluetooth. Such manipulation leads to use after free. This vulnerability is listed as CVE-2023-53386. The attack must be carried out from within the local network. There is no available exploit. It is recommended to upgrade the affected component.

SonicWall urges users to reset credentials after MySonicWall backups were exposed; the company locked out the threat actors and notified authorities. SonicWall urged customers to reset credentials after firewall backup files tied to MySonicWall accounts were exposed. The company announced it had blocked attackers’ access and is working with cybersecurity experts and law enforcement agencies […]

A vulnerability classified as critical was found in OpenPrinting cups-browsed 2.0.1. This impacts an unknown function of the component CUPS Service. The manipulation results in binding to an unrestricted ip address. This vulnerability was named CVE-2024-47176. The attack may be performed from remote. In addition, an exploit is available.

Research shows that natural disasters are increasing— of the 10 years with the most natural disasters, 9 were in the last decade. From 1980 to 2024, the U.S. averaged 9 events per year, while the annual average for the most recent 5 years is 23. Communication service providers (CSPs) play a vital role in disaster...

SonicWall is urging customers to reset credentials after their firewall configuration backup files were exposed in a security breach impacting MySonicWall accounts. The company said it recently detected suspicious activity targeting the cloud backup service for firewalls, and that unknown threat actors accessed backup firewall preference files stored in the cloud for less than 5% of its

Microsoft 365's dominance and tight integration makes it a massive target in today's cyber landscape. Its tight integration expands the attack surface and amplifies risk. Learn from Acronis TRU why backup blind spots & lateral movement risks demand stronger defenses. [...]

Attackers injected malicious code into GitHub Actions workflows in a widespread campaign to steal Python Package Index (PyPI) publishing tokens. While some tokens stored as GitHub secrets were successfully exfiltrated, PyPI administrators have confirmed that the platform itself was not compromised and the stolen tokens do not appear to have been used. The attack campaign […]

The post Hackers Injecting Malicious Code into GitHub Actions Workflows to Steal PyPI Publishing Tokens appeared first on Cyber Security News.

Tired of IP Lists? Securely connect private networks to any app by its hostname, not its IP address. This routing is now built into Cloudflare Tunnel and is free for all Cloudflare One customers.

Submit #640605 / VDB-324814

In December 2024, we warned against the rapid evolution of adversary tactics, techniques, and procedures (TTPs) in 2025. Our predictions have come true, as cybercriminals leverage millions of dollars in profits to develop new malware technologies and support them with increasingly sophisticated procedures.

The post Adversary TTPs are Rapidly Evolving: What It Means for Your SOC appeared first on Security Boulevard.

Минимальные права разработчика оказались билетом в закрытые недра корпоративных серверов.

Onder toeziend oog van koning Willem-Alexander, laten infanteristen zich uit een C-130 Hercules-transportvliegtuig vallen. Zelf springt hij niet, maar de koning weet nu wel hoe een luchtlandingsoperatie in zijn werk gaat. Hoe pak je spullen in, die de militairen op de grond nodig hebben en hoe drop je een lading? De koning werd er vanmorgen over geïnformeerd voordat hij met de parachutisten op Vliegbasis Eindhoven opsteeg. 

Microsoft is adding free AI-powered text writing capabilities to Notepad for customers with Copilot+ PCs running Windows 11. [...]

A vulnerability marked as problematic has been reported in Huawei HarmonyOS and EMUI. Impacted is an unknown function of the component HUKS Module. The manipulation leads to business logic errors. This vulnerability is referenced as CVE-2024-56438. The attack can only be performed from a local environment. No exploit is available.

A vulnerability labeled as critical has been found in Huawei HarmonyOS 5.0.0. This affects an unknown part of the component Contacts Module. Such manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2025-46586. Local access is required to approach this attack. No exploit exists.

A vulnerability was found in Huawei HarmonyOS 5.0.0. It has been classified as problematic. Affected by this vulnerability is an unknown functionality of the component App Lock Module. The manipulation leads to information management error. This vulnerability is documented as CVE-2025-46588. The attack needs to be performed locally. There is not any exploit available.