Aggregator

Всё, что вы делали онлайн — маршруты, пароли, переписка — теперь у тех, кто спрятался под иконкой пипетки.

Microsoft has released critical security updates to address CVE-2025-47981, a severe heap-based buffer overflow vulnerability in the SPNEGO Extended Negotiation (NEGOEX) Security Mechanism that affects multiple Windows and Windows Server versions.  This vulnerability carries a CVSS score of 9.8 out of 10, indicating maximum severity with the potential for remote code execution without user interaction.  […]

The post Microsoft Patches Wormable RCE Vulnerability in Windows Client and Server appeared first on Cyber Security News.

AlertMedia launched Incident Response, an addition to its AI-enabled platform designed to help organizations mitigate risks and resolve incidents faster. When impacted by critical events like natural disasters, workplace or public safety emergencies, cybersecurity incidents, and system failures, organizations often struggle to coordinate an effective response due to disparate tools and manual, error-prone processes. AlertMedia’s Incident Response addresses these gaps by delivering a suite of tools that enables security and business continuity teams to activate … More →

The post AlertMedia Incident Response improves coordination and visibility into resolving incidents appeared first on Help Net Security.

Red Hat announced Red Hat Enterprise Linux for Business Developers to simplify access to the world’s leading enterprise Linux platform for business-focused development and testing scenarios. A new self-service offering through the Red Hat Developer Program, Red Hat Enterprise Linux for Business Developers helps business development teams build, test and iterate on applications more quickly and on the same platform that underpins production systems across the hybrid cloud at no cost. IT complexity continues to … More →

The post Red Hat introduces Enterprise Linux for Business Developers appeared first on Help Net Security.

Thousands of web pages falsely branded as popular news sites are conduits for fake cryptocurrency investment scams, researchers said.

A vulnerability, which was classified as problematic, was found in Radiflow iSAP Smart Collector up to 3.02-0. This affects an unknown part of the component rbash. The manipulation leads to improper isolation or compartmentalization. This vulnerability is uniquely identified as CVE-2025-27027. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.1.142/6.6.95/6.12.35/6.15.4/6.16-rc3. Affected is the function atm_dev_deregister. The manipulation leads to information disclosure. This vulnerability is traded as CVE-2025-38245. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.15.4/6.16-rc3 and classified as critical. This vulnerability affects the function read_one_inode of the component btrfs. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2025-38243. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.15.4/6.16-rc3. It has been classified as problematic. Affected is the function want_mount_setattr. The manipulation leads to privilege escalation. This vulnerability is traded as CVE-2025-38247. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.15.4/6.16-rc3. It has been classified as critical. This affects the function br_multicast_port_ctx_deinit of the component bridge. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2025-38248. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.142/6.6.95/6.12.35/6.15.4/6.16-rc3. It has been declared as critical. This vulnerability affects the function clip_push of the component atm. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2025-38251. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.35/6.15.4/6.16-rc3. It has been rated as critical. This issue affects the function wacom_aes_battery_handler of the component HID. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2025-38253. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.15.4/6.16-rc3. Affected is the function drm_edid_raw of the component AMD Display. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2025-38254. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.6.95/6.12.35/6.15.4/6.16-rc3. Affected by this vulnerability is the function group_cpus_evenly. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2025-38255. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.142/6.6.95/6.12.35/6.15.4 and classified as problematic. Affected by this issue is the function wcd9335_parse_dt of the component ASoC. The manipulation leads to privilege escalation. This vulnerability is handled as CVE-2025-38259. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A sophisticated supply chain attack has compromised ETHcode, a popular Visual Studio Code extension for Ethereum development, through a malicious GitHub pull request that required just two lines of code to weaponize the trusted software. The attack, discovered by ReversingLabs researchers, demonstrates how threat actors can infiltrate legitimate development tools with minimal code changes, potentially […]

The post VS Code Extension Weaponized With Two Lines of Code Leads to Supply Chain Attack appeared first on Cyber Security News.

A threat actor with suspected ties to India has been observed targeting a European foreign affairs ministry with malware capable of harvesting sensitive data from compromised hosts. The activity has been attributed by Trellix Advanced Research Center to an advanced persistent threat (APT) group called DoNot Team, which is also known as APT-C-35, Mint Tempest, Origami Elephant, SECTOR02, and

Последний стабильный апдейт перед новым циклом.

Splunk has released critical security updates addressing multiple vulnerabilities in third-party packages in SOAR versions 6.4.0 and 6.4.  Published on July 7, 2025, this comprehensive security update remediates various Common Vulnerabilities and Exposures (CVEs) ranging from medium to critical severity levels.  The vulnerabilities affect essential components, including git, Django, cryptography libraries, and JavaScript packages, requiring […]

The post Splunk Address Third-Party Packages Vulnerabilities in SOAR Versions – Update Now appeared first on Cyber Security News.