Aggregator

Noodlophile Malware Campaign Expands Global Reach with Copyright Phishing Lures

The Hackers News
3 weeks 1 day ago
The threat actors behind the Noodlophile malware are leveraging spear-phishing emails and updated delivery mechanisms to deploy the information stealer in attacks aimed at enterprises located in the U.S., Europe, Baltic countries, and the Asia-Pacific (APAC) region. "The Noodlophile campaign, active for over a year, now leverages advanced spear-phishing emails posing as copyright infringement
The Hacker News

Amazon Q Developer: Secrets Leaked via DNS and Prompt Injection

Embrace The Red
3 weeks 1 day ago
The next three posts will cover high severity vulnerabilities in the Amazon Q Developer VS Code Extension (Amazon Q Developer), which is a very popular coding agent, with over 1 million downloads. It is vulnerable to prompt injection from untrusted data and its security depends heavily on model behavior. At a high level Amazon Q Developer can leak sensitive information from a developer’s machine, e.g. API keys, to external servers via DNS requests.

CVE-2025-55300 | komari-monitor komari up to 1.0.4 Terminal Websocket Endpoint cross site scripting (GHSA-q355-h244-969h)

VulDB Recent Entries
3 weeks 1 day ago
A vulnerability described as problematic has been identified in komari-monitor komari up to 1.0.4. This impacts an unknown function of the component Terminal Websocket Endpoint. The manipulation results in cross site scripting. This vulnerability is reported as CVE-2025-55300. The attack can be launched remotely. No exploit exists. Upgrading the affected component is recommended.
vuldb.com

CVE-2025-55288 | MGeurts genealogy up to 4.3.x cross site scripting (GHSA-3h8x-g9xj-rhwg / EUVD-2025-25149)

VulDB Recent Entries
3 weeks 1 day ago
A vulnerability marked as problematic has been reported in MGeurts genealogy up to 4.3.x. This affects an unknown function. The manipulation leads to cross site scripting. This vulnerability is documented as CVE-2025-55288. The attack can be initiated remotely. There is not any exploit available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2025-55287 | MGeurts genealogy up to 4.3.x cross site scripting (GHSA-j457-9m86-6q5r / EUVD-2025-25150)

VulDB Recent Entries
3 weeks 1 day ago
A vulnerability labeled as problematic has been found in MGeurts genealogy up to 4.3.x. The impacted element is an unknown function. Executing manipulation can lead to cross site scripting. This vulnerability is registered as CVE-2025-55287. It is possible to launch the attack remotely. No exploit is available. The affected component should be upgraded.
vuldb.com

BSidesSF 2025: Inside The Information Stealer Ecosystem: From Compromise To Countermeasure

Security Boulevard
3 weeks 1 day ago

Creator, Author and Presenter:

Our deep appreciation to Security BSides - San Francisco and the Creators, Authors and Presenters for publishing their BSidesSF 2025 video content on YouTube. Originating from the conference’s events held at the lauded CityView / AMC Metreon - certainly a venue like no other; and via the organization's YouTube channel.

Additionally, the organization is welcoming volunteers for the BSidesSF Volunteer Force, as well as their Program Team & Operations roles. See their succinct BSidesSF 'Work With Us' page, in which, the appropriate information is to be had!

Permalink

The post BSidesSF 2025: Inside The Information Stealer Ecosystem: From Compromise To Countermeasure appeared first on Security Boulevard.

Marc Handelman

Threat Actors Exploit Microsoft Help Index File to Deploy PipeMagic Malware

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
3 weeks 1 day ago

Cybersecurity researchers have uncovered a sophisticated campaign where threat actors leverage a Microsoft Help Index File (.mshi) to deploy the PipeMagic backdoor, marking a notable evolution in malware delivery methods. This development ties into the exploitation of CVE-2025-29824, a zero-day elevation of privilege vulnerability in the Windows Common Log File System (CLFS) driver, which Microsoft […]

The post Threat Actors Exploit Microsoft Help Index File to Deploy PipeMagic Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Aman Mishra

Managed ad