Aggregator

A vulnerability classified as critical has been found in Linux Kernel up to 6.1.21/6.2.8. This affects the function x86_perf_event_set_period. This manipulation causes infinite loop. This vulnerability appears as CVE-2023-53073. The attacker needs to be present on the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.176/5.15.104/6.1.21/6.2.8. It has been classified as critical. This affects an unknown part of the component Setting Handler. Performing manipulation results in improper initialization. This vulnerability is identified as CVE-2023-53079. The attack can only be performed from the local network. There is not any exploit available. Upgrading the affected component is recommended.

A vulnerability was found in Linux Kernel up to 5.10.176/5.15.104/6.1.21/6.2.8 and classified as critical. The impacted element is the function xdp_umem_reg of the component xsk. The manipulation results in buffer overflow. This vulnerability was named CVE-2023-53080. The attack needs to be approached within the local network. There is no available exploit. It is suggested to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.2.7. This issue affects the function lookup_rec of the component ftrace. Performing manipulation results in use after free. This vulnerability is known as CVE-2023-53075. Access to the local network is required for this attack. No exploit is available. It is advisable to upgrade the affected component.

The same APT hammered critical bugs in Citrix NetScaler (CVE-2025-5777) and the Cisco Identity Service Engine (CVE-2025-20337) in a sign of growing adversary interest in identity and access management systems.

The U.S. is establishing a "strike force" to counter cyber scam compounds across Southeast Asia that have stolen billions from Americans over the last five years.

Name: PermCTF 2025 (an PermCTF event.)
Date: Oct. 11, 2025, 4:30 a.m. — 11 Oct. 2025, 14:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Location: Russia, Perm
Offical URL: https://permctf2025.pstu.ru/
Rating weight: 0.00
Event organizers: E-Toolz

Name: QUESTCON CTF 2025 (an QUESTCON event.)
Date: Oct. 11, 2025, 9 a.m. — 12 Oct. 2025, 09:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://discord.com/invite/JAavPpY95u
Rating weight: 26.50
Event organizers: OWASP_PCCOE-CORE

Name: GaianSpace CTF 2025 (an GaianSpace CTF event.)
Date: Oct. 13, 2025, 2 p.m. — 13 Oct. 2025, 14:30 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://gaian.space/ctf
Rating weight: 0.00
Event organizers: GaianSpace

Name: AltayCTF 2025 (an AltayCTF event.)
Date: Oct. 26, 2025, 10 a.m. — 26 Oct. 2025, 19:00 UTC  [add to calendar]
Format: Attack-Defense
On-site
Location: Barnaul
Offical URL: https://university.altayctf.ru/2025
Rating weight: 25.00
Event organizers: SharLike

Name: CipherHunt 2.0 (an CipherHunt 2.0 event.)
Date: Oct. 28, 2025, 9:30 a.m. — 29 Oct. 2025, 14:30 UTC  [add to calendar]
Format: Jeopardy
On-site
Location: Chandigarh, India
Offical URL: https://cipherhunt.xyz/
Rating weight: 0.00
Event organizers: CypherLock

Name: ZeroDay CTF 2025 (an Z3R0D4Y CTF event.)
Date: Oct. 30, 2025, 1 p.m. — 31 Oct. 2025, 13:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://register.zerologon.co.in/
Rating weight: 0
Event organizers: Z3r0_l0g0n

Name: Cryovault Quals (an ISFCR PESU CTF event.)
Date: Nov. 1, 2025, 6:30 a.m. — 02 Nov. 2025, 06:30 UTC  [add to calendar]
Format: Jeopardy
On-line
Location: India, Bengaluru, PES University RR campus
Offical URL: https://www.isfcr.pes.edu/
Rating weight: 0.00
Event organizers: x6e.x65.x78.x75.x73

Name: Russian CTF Cup 2025 Qualifier (an Russian CTF Cup event.)
Date: Nov. 2, 2025, 9 a.m. — 03 Nov. 2025, 09:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Location: Russia
Offical URL: https://ctfcup.ru/
Rating weight: 35.29
Event organizers: ctfcup

Name: CSCTF 2025 (an CSCTF event.)
Date: Nov. 7, 2025, noon — 09 Nov. 2025, 12:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://2025.chronos-security.ro/
Rating weight: 0.00
Event organizers: Mirachron

Name: Cryovault Finals (an ISFCR PESU CTF event.)
Date: Nov. 9, 2025, 8 a.m. — 09 Nov. 2025, 17:00 UTC  [add to calendar]
Format: Jeopardy
On-site
Location: India, Bengaluru, PES University RR campus
Offical URL: https://www.isfcr.pes.edu/
Rating weight: 0.00
Event organizers: x6e.x65.x78.x75.x73

Name: RootCipher (an ThunderCipher CTF event.)
Date: Nov. 9, 2025, 1 p.m. — 09 Nov. 2025, 18:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://forms.thundercipher.tech/form/949b7b32-ff49-400e-9194-a91a5deeb910
Rating weight: 0.00
Event organizers: ThunderCipher

How Does NHI Management Revolutionize Security Frameworks? Have you ever wondered why securing machine identities is as critical as protecting human identities? Non-Human Identities (NHIs), such as machine or application identities, play an increasingly vital role in cybersecurity. When businesses continue to shift operations to the cloud, understanding and managing NHIs have become pivotal to […]

The post How Smart NHI Solutions Enhance Security Measures appeared first on Entro.

The post How Smart NHI Solutions Enhance Security Measures appeared first on Security Boulevard.

Why Should Non-Human Identities (NHIs) Be Your Next Security Focus? Have you considered how Non-Human Identities (NHIs) fit into your organization’s cybersecurity strategy? Where cloud computing is omnipresent, securing NHIs is not just an option but a necessity for any scalable security practice. NHIs, often overlooked, play a crucial role in safeguarding your digital assets, […]

The post Ensuring Scalability in Your NHI Security Practices appeared first on Entro.

The post Ensuring Scalability in Your NHI Security Practices appeared first on Security Boulevard.

How Can Organizations Achieve Stability in Managing Non-Human Identities Across Multiple Clouds? Where technology rapidly evolves and security threats become increasingly sophisticated, how can organizations ensure stability when managing Non-Human Identities (NHIs) across multiple cloud environments? Understanding the key strategies that target professionals across various industries is crucial for maintaining a secure and efficient system. […]

The post Creating Stability in NHI Management Across Multiple Clouds appeared first on Entro.

The post Creating Stability in NHI Management Across Multiple Clouds appeared first on Security Boulevard.