Aggregator

Microsoft has released patches for two significant vulnerabilities in Microsoft Office that could allow attackers to execute malicious code on affected systems. The flaws, tracked as CVE-2025-54910 and CVE-2025-54906, were disclosed on September 9, 2025, and affect various versions of the popular productivity suite. While Microsoft has assessed exploitation as “less likely” for both vulnerabilities […]

The post Critical Microsoft Office Vulnerabilities Let Attackers Execute Malicious Code appeared first on Cyber Security News.

HackerOne has confirmed it was among the companies affected by a recent data breach that provided unauthorized access to its Salesforce instance. The access was gained through a compromise of the third-party application Drift, which Salesloft owns. The bug bounty platform announced the security incident, aligning with its company value of “Default to Disclosure.” According […]

The post HackerOne Confirms Data Breach – Hackers Gained Unauthorized Access To Salesforce Instance appeared first on Cyber Security News.

You must login to view this content

You must login to view this content

Salesloft has announced the restoration of its integration with Salesforce following the incident linked to the Drift platform

The post Salesloft Restores Salesforce Integration After GitHub & AWS Breach appeared first on Penetration Testing Tools.

At the end of August, GreyNoise recorded a sharp surge in scanner activity targeting Cisco ASA devices. Experts

The post Warning: Massive Botnet Is Scanning for Cisco ASA Vulnerabilities appeared first on Penetration Testing Tools.

Researchers at FortiGuard Labs have documented a new campaign deploying the MostereRAT remote access trojan, which targets Windows

The post MostereRAT: The New Trojan Using Legitimate Tools to Attack appeared first on Penetration Testing Tools.

Perforce Software has expanded its software testing and synthetic data offerings with the introduction of AI-powered synthetic data generation. Delphix AI introduces a new language model embedded into the Delphix DevOps Data Platform, allowing teams to automatically deliver synthetic data across the development lifecycle. Uniting data masking, data delivery, and synthetic data generation in a single platform, and boosting it with AI, Delphix provides an enterprise-grade solution for DevOps acceleration, privacy compliance, and AI/ML model … More →

The post Perforce expands DevOps Data Platform with AI-driven synthetic data generation appeared first on Help Net Security.

Researchers at Silent Push have uncovered infrastructure linked to the Chinese cyber-espionage groups Salt Typhoon and UNC4841. The

The post Salt Typhoon: New Evidence Reveals Years of Chinese Cyber-Espionage appeared first on Penetration Testing Tools.