Aggregator

A vulnerability was found in IBM Cognos Analytics Mobile up to 1.1.22 on iOS and classified as problematic. This issue affects some unknown processing. The manipulation leads to inadequate encryption strength. The identification of this vulnerability is CVE-2025-36106. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Traditional security testing tools can’t keep pace with modern threats—or prove which vulnerabilities truly matter. Discover how Adversarial Exposure Validation (AEV) bridges the gap by continuously simulating real-world attacks to reveal exploitable exposures, prioritize risk, and empower smarter security decisions. Learn why AEV is the missing link in your CTEM strategy and how BreachLock is leading the way.

Tom Leighton of Akamai Wants to End Cloud Bloat and Secure AI From Inside Out
The cloud was meant to be cheaper, but it's not. A bold new vision is emerging: one that slashes costs, decentralizes AI and secures APIs at the edge. From inference to firewalls, a reimagined internet is challenging hyperscaler dominance.

Attackers Modify File-Transfer Server Software to Display Patched Version Number
Managed file-transfer software developer CrushFTP said a zero-day vulnerability in its tool's web interface is being actively exploited to gain admin-level access to servers. The company urged immediate updating, saying all versions of its software released since July 1 are patched.

Leaders of the Russian Military Intelligence Units of the GRU Also Targeted
The U.K. government on Friday sanctioned three Russian Military Intelligence Service units 29155, 26165 and 74455 in the United Kingdom and Ukraine. The sanctions also targeted 18 Russian officials for their role in GRU cyber operations dating back to 2013.

Seqrite Labs APT-Team has uncovered a persistent threat entity, UNG0002 (Unknown Group 0002), orchestrating espionage-driven operations across Asian jurisdictions, including China, Hong Kong, and Pakistan. Active since at least May 2024, this South-East Asia-based cluster has demonstrated a high degree of adaptability and technical prowess, targeting critical sectors such as defense, civil aviation, electrotechnical engineering, […]

The post UNG0002 Deploys Weaponized LNK Files with Cobalt Strike and Metasploit to Target Organizations appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A red teamer is publishing research next month about how weaknesses in modern security products lay the groundwork for stealthy implants in AI-powered applications.

As the state responded to a pro-Iranian attack, officials tell CyberScoop that it avoided reaching out to the federal agency, partly because it has been “politicized and weakened” under the president.

The post After website hack, Arizona election officials unload on Trump’s CISA appeared first on CyberScoop.

The popular file transfer company CrushFTP has discovered a previously unknown vulnerability being exploited by hackers.

A vulnerability has been found in Linux Kernel up to 6.1.131/6.6.83/6.12.19/6.13.7 and classified as critical. Affected by this vulnerability is an unknown functionality of the file qla1280.c. The manipulation of the argument DEBUG_QLA1280 leads to null pointer dereference. This vulnerability is known as CVE-2025-21957. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 6.13.6. Affected by this vulnerability is the function cow_file_range. The manipulation leads to allocation of resources. This vulnerability is known as CVE-2025-21942. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.82/6.12.18/6.13.6 and classified as problematic. This issue affects the function parse_sec_desc of the component ksmbd. The manipulation leads to out-of-bounds read. The identification of this vulnerability is CVE-2025-21946. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.130/6.6.82/6.12.18/6.13.6. It has been classified as critical. Affected is the function ipc_msg_send_request of the component IPC Response Handler. The manipulation leads to type confusion. This vulnerability is traded as CVE-2025-21947. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.18/6.13.6 and classified as critical. Affected by this issue is the function hmm_range_fault of the component xe. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2025-21939. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.130/6.6.82/6.12.18/6.13.6 and classified as critical. Affected by this issue is the function mgmt_alloc_skb of the component Bluetooth. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2025-21936. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 6.1.130/6.6.82/6.12.18/6.13.6. This vulnerability affects the function mptcp_pm_nl_append_new_local_addr. The manipulation leads to state issue. This vulnerability was named CVE-2025-21938. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.13.6. It has been declared as critical. This vulnerability affects the function rio_add_net of the component rapidio. The manipulation leads to use after free. This vulnerability was named CVE-2025-21934. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 6.13.6. Affected by this vulnerability is the function rio_add_net of the component rapidio. The manipulation leads to unchecked return value. This vulnerability is known as CVE-2025-21935. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A new wave of cyber-attacks has emerged, exploiting Windows shortcut files (.LNK) combined with legitimate system utilities collectively known as Living-off-the-Land Binaries and Scripts (LOLBin/S) to deliver the DeerStealer infostealer through highly obfuscated multi-stage chains. Recent campaigns begin with phishing emails or fraudulent file shares containing weaponized .LNK files camouflaged as seemingly benign documents, often […]

The post DeerStealer Malware Spread Through Weaponized .LNK and LOLBin Tools appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.