Aggregator

Weekly Report: JPCERT/CCが2025年4月-6月分の「JPCERT/CC 四半期レポート」を公開

統合版 JPCERT/CC
4 months 3 weeks ago
JPCERT/CCは、2025年4月から6月分の四半期レポートを公開しました。今年度から、「JPCERT/CC 活動四半期レポート」と「JPCERT/CC インシデント報告対応レポート」を統合し、名称を「JPCERT/CC 四半期レポート」としてリニューアルしました。JPCERT/CCが報告を受けたインシデントの統計や事例をはじめ、国内外の活動についてまとめています。

Google Removes 11,000+ Accounts in Q2 2025 Crackdown on Coordinated Influence Operations

Penetration Testing Tools - Metepreter.org
4 months 3 weeks ago

Google has released the findings of its investigations into coordinated influence operations conducted across its platforms during the second quarter of 2025. In total, more than 11,000 accounts and assets were removed, including 10,910...

The post Google Removes 11,000+ Accounts in Q2 2025 Crackdown on Coordinated Influence Operations appeared first on Penetration Testing Tools.

ddos

CVE-2025-37103

CVE Trends
4 months 3 weeks ago
Currently trending CVE - Hype Score: 12 - Hard-coded login credentials were found in HPE Networking Instant On Access Points, allowing anyone with knowledge of it to bypass normal device authentication. Successful exploitation could allow a remote attacker to gain administrative access to the system.

CVE-2025-53816

CVE Trends
4 months 3 weeks ago
Currently trending CVE - Hype Score: 1 - 7-Zip is a file archiver with a high compression ratio. Zeroes written outside heap buffer in RAR5 handler may lead to memory corruption and denial of service in versions of 7-Zip prior to 25.0.0. Version 25.0.0 contains a fix for the issue.

Weaponized LNK File Disguised as Credit Card Security Email Steals User Data

Cyber Security News
4 months 3 weeks ago

Cybercriminals have evolved their social engineering tactics with a sophisticated malware campaign that exploits users’ trust in financial institutions. The latest threat involves a malicious LNK file masquerading as a credit card security email authentication popup, specifically targeting unsuspecting users through deceptive filename conventions like card_detail_20250610.html.lnk. This attack represents a concerning shift in malware distribution […]

The post Weaponized LNK File Disguised as Credit Card Security Email Steals User Data appeared first on Cyber Security News.

Tushar Subhra Dutta

CVE-2024-53203 | Linux Kernel up to 6.11.10/6.12.1 USB ucsi_ccg_sync_control array index (EUVD-2024-51875 / Nessus ID 216191)

Vuldb Updates
4 months 3 weeks ago
A vulnerability classified as critical was found in Linux Kernel up to 6.11.10/6.12.1. This vulnerability affects the function ucsi_ccg_sync_control of the component USB. The manipulation leads to improper validation of array index. This vulnerability was named CVE-2024-53203. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Global Cyberattacks Surge 143% in Four Years: Check Point Reveals Escalating Threat Landscape

Penetration Testing Tools - Metepreter.org
4 months 3 weeks ago

Amid the relentless surge of digital threats, companies across the globe find themselves under a barrage of cyberattacks. According to the latest data from Check Point Research, each organization now endures an average of...

The post Global Cyberattacks Surge 143% in Four Years: Check Point Reveals Escalating Threat Landscape appeared first on Penetration Testing Tools.

ddos

INC

Dark Feed IO
4 months 3 weeks ago

You must login to view this content

cohenido

CVE-2021-39077 | IBM Security Guardium up to 11.4 cleartext storage (XFDB-215587)

Vuldb Updates
4 months 3 weeks ago
A vulnerability, which was classified as problematic, has been found in IBM Security Guardium up to 11.4. This issue affects some unknown processing. The manipulation leads to cleartext storage of sensitive information. The identification of this vulnerability is CVE-2021-39077. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad