Aggregator

Инструмент из Caltech возвращает невидимую часть мира в фокус науки.

A vulnerability was found in TOTOLINK A830R, A950RG, A3000RU and A3100R up to 4.1.2cu.5161/4.1.2cu.5182/4.1.2cu.5247/5.9c.5185. It has been rated as critical. Affected by this issue is some unknown functionality of the file downloadFile.cgi. The manipulation of the argument v5 leads to buffer overflow. This vulnerability is handled as CVE-2025-28028. The attack may be launched remotely. There is no exploit available.

20 лет понадобилось на то, чтобы из «грязи» родилось золото будущего.

A vulnerability was found in pnpm up to 9.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /node_modoules/ of the component MD5 Handler. The manipulation leads to use of weak hash. This vulnerability is known as CVE-2024-47829. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in xwiki-platform up to 15.10.15/16.4.5/16.10.0. It has been classified as critical. Affected is an unknown function. The manipulation leads to sql injection. This vulnerability is traded as CVE-2025-32968. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in DataEase up to 2.10.7 and classified as critical. This issue affects some unknown processing of the component Backend JDBC link Handler. The manipulation leads to authentication bypass by spoofing. The identification of this vulnerability is CVE-2025-32966. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in xwiki-platform up to 15.10.15/16.4.5/16.10.0 and classified as critical. This vulnerability affects unknown code. The manipulation leads to sql injection. This vulnerability was named CVE-2025-32969. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Redis up to 7.4.2. This affects an unknown part. The manipulation leads to allocation of resources. This vulnerability is uniquely identified as CVE-2025-21605. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

M&S has launched an investigation and said some customer operations are impacted.

 

Something happened this weekend — starting on Monday my cellphone has been lighting up with unknown callers — a 30x increase! 

I rarely give out the number so I assume one of the following:

1. Ended up on a cybercriminal call-list because of a Data Breach from one of the few vendors that actually do have my cell number. Might have been Hertz or perhaps one of the databases on Oracle. Could be an unannounced breach. Not sure.
2. Cybersecurity sales vendors, preparing for RSA somehow acquired my number as part of a purchased marketing list (if I ever find out who did this I will call them out and advise everyone to never use their products), making a massive unethical call campaign that I somehow got caught up in.
3. Perhaps a Nation State actor that I perturbed is seeking to compromise my phone. I have been talking and doing media interviews calling out aggressive state sponsored hacking from China, Russia, North Korea, and Iran. The calls are highly persistent, even though they are not getting anywhere. Given the vastly dispersed number range (looks to be a prodigious use of spoofed CallerID numbers) they are determined even though I do not answer. A sales team or criminal should have moved on by now.

I do find it amusing and intellectually intriguing, from a cybersecurity perspective! 

Some details:

- So far I see a 30x increase in calls, all starting Monday
- A huge range of numbers, one after the other but never at the same time
- All the numbers are from the US. Appears to be spoofed Caller ID numbers
- Never leaves a voicemail
- Are not sending SMS text messages — which is interesting…
- I don’t see any equitable rise in email phishing, this is only phone calls

The joke is on them:

1. I NEVER answer my cell unless it is a number I know. Never. I follow a whitelist methodology when it comes to calls
2. I immediately BLOCK the number. Yup, I force them to spoof another CallerID number
3. If a salesperson does cold-call my cell I make a note and will NEVER use their products
4. Shields-Up! Now I am on-guard. 

• I am paying extra attention to every DM, text, and email. I am even vetting known numbers. 
•  I am double checking all my OS & apps patch levels across my all my PC’s and servers, and will do an unscheduled full backup of critical data (that I store offline is a safe). 
• Lastly, I am scanning my systems, removing any old or unneeded apps, and scrutinizing every running Process and device on my network.

…these are all things I like to do anyways, so it really is no bother. 

Overall, it has been interesting and I am so tempted to answer a call to just to investigate. But that would be in opposition to what I preach. 

Anyone else experiencing such a flood of undesired calls the past few days?

The post Massive Increase to Unwanted Cell Calls appeared first on Security Boulevard.

Use of synthetic identities by malicious employment candidates is yet another way state-sponsored actors are trying to game the hiring process and infiltrate Western organizations.

At IRONSCALES, we believe trust is the bedrock of every business conversation. Whether it's a deal being negotiated, a partner being onboarded, or a CEO addressing their workforce, trust underpins it all. Yet, as we step into the era of Phishing 3.0, that trust is under siege.

The post Restoring Trust in Business Communications appeared first on Security Boulevard.

European Commission Also Fines Apple 500 Million Euros
European regulators said Facebook conducted an end run around privacy regulations by requiring users to pay a monthly subscription fee or else accept that their personal data would be fed to advertisers. The European Commission fined the social media giant 200 million euros.

Breach Victim Tally Soars Since Firm Filed an Initial Breach Report in Early April
Kelly Benefits is notifying nine large clients and nearly 264,000 individuals that their sensitive personal information was potentially compromised in a December data theft incident. The tally of affected people has climbed eight-fold since the company's first estimate earlier this month.

Author/Presenter: Emma Fang

Our sincere appreciation to BSidesLV, and the Presenters/Authors for publishing their erudite Security BSidesLV24 content. Originating from the conference’s events located at the Tuscany Suites & Casino; and via the organizations YouTube channel.

Permalink

The post BSidesLV24 – Common Ground – Securing Your Cloud-Native DevOps: A Zero Trust Approach appeared first on Security Boulevard.

A new Android malware has been discovered hidden inside trojanized versions of the Alpine Quest mapping app, which is reportedly used by Russian soldiers as part of war zone operational planning. [...]

A vulnerability was found in oretnom23 Online Leave Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /leave_system/classes/SystemSettings.php?f=update_settings. The manipulation leads to unrestricted upload. This vulnerability is known as CVE-2022-45009. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in py7zr up to 0.20.0. Affected is the function SevenZipFile.extractall of the component 7z File Handler. The manipulation leads to pathname traversal. This vulnerability is traded as CVE-2022-44900. The attack needs to be done within the local network. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, has been found in Redmine up to 5.0.3. Affected by this issue is some unknown functionality. The manipulation leads to permission issues. This vulnerability is handled as CVE-2022-44030. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.