Aggregator

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.121/6.6.67. This affects the function io_rw_done. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2023-52926. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

Как работает цифровая цензура в Поднебесной.

A vulnerability, which was classified as problematic, has been found in Mattermost up to 9.11.7/10.1.3/10.2.2/10.3.2/10.4.1. Affected by this issue is some unknown functionality of the component Archived Channel Handler. The manipulation leads to incorrect authorization. This vulnerability is handled as CVE-2025-24526. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Mattermost up to 9.11.6/10.4.1. Affected by this vulnerability is an unknown functionality. The manipulation leads to session fixiation. This vulnerability is known as CVE-2025-1412. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Mattermost up to 9.11.7/10.2.2/10.3.2/10.4.1. Affected is an unknown function of the component Archive Import Handler. The manipulation leads to path traversal. This vulnerability is traded as CVE-2025-25279. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Mattermost up to 9.11.7/10.2.2/10.3.2/10.4.1. It has been rated as critical. This issue affects some unknown processing of the component Boards Category Handler. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2025-24490. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

CYFIRMA researchers discovered that the SpyLend Android malware was downloaded 100,000 times from the official app store Google Play. CYFIRMA researchers discovered an Android malware, named SpyLend, which was distributed through Google Play as Finance Simplified. The malware targets Indian users with unauthorized loan apps, enabling predatory lending, blackmail, and extortion. The Finance Simplified app […]

The Wireshark Foundation has released version 4.4.4 of its widely used network protocol analyzer, addressing a high-severity vulnerability that could allow attackers to trigger denial-of-service (DoS) conditions by injecting malicious packets. The update resolves CVE-2025-1492, a flaw in the Bundle Protocol and CBOR dissectors that caused crashes, infinite loops, and memory leaks when processing specially […]

The post Wireshark 4.4.4 Released With Fix for Vulnerability That Triggers DoS Attack appeared first on Cyber Security News.

GhostSocks, a Golang-based SOCKS5 backconnect proxy malware, has emerged as a significant threat within the cybercrime ecosystem. First identified in October 2023 on Russian-language forums, its distribution expanded to English-speaking criminal platforms by mid-2024. This malware operates as part of a Malware-as-a-Service (MaaS) model, allowing threat actors to exploit compromised systems for financial gain. Its […]

The post GhostSocks Malware Uses SOCKS5 Proxy to Evade Detection Systems appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Ваш верный помощник в быту или ночной кошмар?

A vulnerability was found in Mattermost up to 9.11.7/10.2.2/10.3.2/10.4.1. It has been declared as critical. This vulnerability affects unknown code of the component Block Handler. The manipulation leads to path traversal. This vulnerability was named CVE-2025-20051. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

In a swift and highly coordinated attack, LockBit ransomware operators exploited a critical remote code execution vulnerability (CVE-2023-22527) in Atlassian Confluence servers, targeting an exposed Windows server. This vulnerability, rated CVSS 10.0, enabled unauthenticated attackers to execute arbitrary commands by injecting malicious Object-Graph Navigation Language (OGNL) expressions into improperly sanitized template files. The attack commenced […]

The post LockBit Ransomware Strikes: Exploiting a Confluence Vulnerability appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

👍 👍 👍

👍 👍 👍

👍 👍 👍

👍 👍 👍

👍 👍 👍

A sophisticated ransomware attack leveraging a critical Atlassian Confluence vulnerability (CVE-2023-22527, CVSS 10.0) has been uncovered, culminating in the deployment of LockBit Black ransomware across enterprise networks within two hours of initial compromise. The attackers orchestrated a multi-stage intrusion involving credential theft, lateral movement via RDP, and automated ransomware distribution using legitimate tools like PDQ […]

The post Hackers Exploited Confluence Server Vulnerability To Deploy LockBit Ransomware appeared first on Cyber Security News.

上周关注度较高的产品安全漏洞(20250217-20250223)