Aggregator

A vulnerability was found in Balbooa Forms Component up to 2.3.1.1 on Joomla. It has been classified as critical. Affected is an unknown function. The manipulation of the argument ID leads to sql injection. This vulnerability is traded as CVE-2025-49485. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in rsjoomla RSFiles Component up to 1.17.7 on Joomla and classified as problematic. This issue affects some unknown processing of the component Search. The manipulation leads to resource consumption. The identification of this vulnerability is CVE-2025-50057. The attack may be initiated remotely. There is no exploit available.

A vulnerability has been found in joomsky JS Jobs Component up to 1.4.1 on Joomla and classified as critical. This vulnerability affects unknown code. The manipulation of the argument cvid leads to sql injection. This vulnerability was named CVE-2025-49484. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in ESET NOD32 Antivirus, Internet Security, Smart Security Premium, Security Ultimate, Endpoint Antivirus for Windows, Endpoint Security for Windows, Small Business Security, Safe Server, Server Security for Windows Server, Mail Security for Microsoft Exchange Server and Security for Microsoft SharePoint Server. This affects an unknown part. The manipulation leads to time-of-check time-of-use. This vulnerability is uniquely identified as CVE-2025-2425. The attack needs to be approached locally. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in rsjoomla RSBlog Component up to 1.14.5 on Joomla. Affected by this issue is some unknown functionality. The manipulation of the argument jform[tags_text] leads to cross site scripting. This vulnerability is handled as CVE-2025-50126. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as problematic was found in rsjoomla RSDirectory Component up to 2.2.8 on Joomla. Affected by this vulnerability is an unknown functionality of the component Review Reply. The manipulation leads to cross site scripting. This vulnerability is known as CVE-2025-50058. The attack can be launched remotely. There is no exploit available.

A vulnerability classified as problematic has been found in rsjoomla RSMail Component up to 1.22.28 on Joomla. Affected is an unknown function. The manipulation of the argument crafted leads to cross site scripting. This vulnerability is traded as CVE-2025-50056. It is possible to launch the attack remotely. There is no exploit available.

Хакеры исчезли с криптой, оставив в блокчейне лишь цифровые следы.

We must pay attention to what holds everything together - the glue. That’s where the real MCP vulnerabilities are hiding. 

The post Critical MCP Vulnerabilities are Slipping Through the Cracks appeared first on Security Boulevard.

Hackers breached Anne Arundel Dermatology systems for three months, potentially exposing personal and health data of 1.9 million people. Anne Arundel Dermatology is a physician-owned and managed dermatology group headquartered in Maryland, founded over 50 years ago. It’s one of the largest dermatology providers in the Mid‑Atlantic and Southeastern United States, operating more than 100 […]

The Computer Emergency Response Team of Ukraine (CERT-UA) has disclosed details of a phishing campaign that's designed to deliver a malware codenamed LAMEHUG. "An obvious feature of LAMEHUG is the use of LLM (large language model), used to generate commands based on their textual representation (description)," CERT-UA said in a Thursday advisory. The activity has been attributed with medium

Cybersecurity researchers have disclosed a critical container escape vulnerability in the NVIDIA Container Toolkit that could pose a severe threat to managed AI cloud services. The vulnerability, tracked as CVE-2025-23266, carries a CVSS score of 9.0 out of 10.0. It has been codenamed NVIDIAScape by Google-owned cloud security company Wiz. "NVIDIA Container Toolkit for all platforms contains a

Google 起诉了 25 名僵尸网络 BadBox 2.0 的中国籍运营者。Google 在起诉书中称，截至 2025 年 4 月，BadBox 2.0 感染了全世界逾 1000 万台基于 Android AOSP 系统的设备，包括电视盒、平板、投影仪和车载休闲娱乐系统。BadBox 2.0 是迄今为止发现的规模最大的联网电视僵尸网络。Google 称 BadBox 2.0 的活动干扰了 Google 与客户的关系，损害其声誉，破坏其产品和服务的价值。由于所有被告都在中国，而中美之间很少引渡嫌疑人，因此诉讼不太可能追究到任何被告的责任。

Картинка на экране — лишь прикрытие для сложной сети, разросшейся по всему миру.

俄罗斯进一步收紧了对网络活动的控制。该国新通过的法律将对搜索被禁止内容以及使用 VPN 访问被禁止内容的人处以罚款。俄罗斯对被禁止内容的定义是一个由政府维护的列表，大约有 5500 个条目，其内容涵盖了从 LGBT运动 到基地等极端主义组织制作的内容，以及宣传纳粹意识形态或或煽动极端主义行为的材料。对搜索被禁止内容的罚款大约为 65 美元，对推广 VPN 等规避审查工具的罚款——个人为 2500 美元，企业最高 1.28 万美元。

Cryptominer campaign runs for years using legit sites to spread malware, targeting Linux systems through known bugs and avoiding detection.

Google on Thursday revealed it's pursuing legal action in New York federal court against 25 unnamed individuals or entities in China for allegedly operating BADBOX 2.0 botnet and residential proxy infrastructure. "The BADBOX 2.0 botnet compromised over 10 million uncertified devices running Android's open-source software (Android Open Source Project), which lacks Google's security protections,"

"欢迎来到漏洞挖掘活动，这是一场代码世界的‘吃鸡’，最后的赢家，就是漏洞的终结者！

Threat actors have been actively exploiting vulnerabilities in Ivanti Connect Secure, specifically CVE-2025-0282 and CVE-2025-22457, to deploy advanced malware, including MDifyLoader and Cobalt Strike Beacon. These attacks, observed from December 2024 through July 2025, build on prior incidents involving SPAWNCHIMERA and DslogdRAT, demonstrating persistent targeting of VPN appliances. Attackers leverage these flaws for initial access, […]

The post Threat Actors Exploit Ivanti Connect Secure Flaws to Deploy Cobalt Strike Beacon appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

关键词数据泄露英国零售巨头Co-op日前披露了一起重大网络安全事件：今年4月遭遇的复杂网络攻击导致其全部650