Aggregator

A vulnerability was found in Linux Kernel up to 6.1.146/6.6.99/6.12.39/6.15.7. It has been classified as critical. Affected is the function l2cap_sock_resume_cb of the file include/linux/instrumented.h of the component Bluetooth. The manipulation leads to use after free. This vulnerability is traded as CVE-2025-38473. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.39/6.15.7 and classified as critical. This issue affects the function cipso_v4_sock_setattr of the component smc. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2025-38475. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.6.99/6.12.39/6.15.7 and classified as problematic. This vulnerability affects the function kmalloc_array of the component KVM. The manipulation leads to privilege escalation. This vulnerability was named CVE-2025-38469. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

В Германии найден новый способ управления транзистором.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.146/6.6.99/6.12.39/6.15.7. This affects the function htb_enqueue. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2025-38468. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.146/6.6.99/6.12.39/6.15.7. Affected by this issue is the function rpl_do_srh_inline. The manipulation leads to use after free. This vulnerability is handled as CVE-2025-38476. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.1.146/6.6.99/6.12.39/6.15.7. Affected by this vulnerability is the function misc_deregister of the file /sys/bus/platform/drivers/aspeed-lpc-snoop/unbind of the component soc. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2025-38487. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

Malware-as-a-service (MaaS) platforms like PhantomOS and Nebula are democratizing Android device attacks because they provide pre-built, subscription-based malware kits for as little as $300 per month, marking a fundamental shift in the cybercrime scene. These services eliminate the need for coding expertise, providing cybercriminals with fully functional Android trojans equipped with advanced capabilities like two-factor […]

The post Android Malware-as-a-Service Gets Cheaper, Packing 2FA Interception appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The Oyster malware, also known as Broomstick or CleanupLoader, has resurfaced in attacks disguised as popular tools like PuTTY, KeyPass, and WinSCP. This malware, active since at least 2023, tricks users into downloading malicious installers, potentially paving the way for ransomware infections such as Rhysida. CyberProof Threat Researchers recently uncovered a real-world instance in the […]

The post Oyster Malware as PuTTY, KeyPass Attacking IT Admins by Poisoning SEO Results appeared first on Cyber Security News.

Tenable customers have spoken: Here’s what they’re saying about our products.

We’re proud to share that Tenable has been named a 2025 Gartner® Peer Insights™ Customers’ Choice1 for Vulnerability Assessment. The best part? It’s based entirely on feedback from the people who use our products every day.

In the 18 months leading up to April 2025, we received 181 verified customer reviews and earned an average rating of 4.7 out of 5 stars. We’re grateful to our customers. That kind of feedback means a lot — and it tells us we're delivering on what matters most.

We’ve said it before and we’ll say it again: vulnerability management is the foundation of exposure management. Full stop. It's the core of what security teams need to understand and reduce risk. When you know which systems are exposed, how critical they are and how likely they are to be exploited you can take smart, focused action — not just react to alerts.

Access the 2025 Gartner® Peer Insights™ Customers’ Choice1 for Vulnerability Assessment

We believe this recognition is a strong signal that our approach is working. Customers count on Tenable’s platform for wide-ranging visibility, risk-based prioritization, clear reporting and remediation, scalability, flexibility and continuous monitoring. Those trusted, proven capabilities are what make our exposure management platform a real difference-maker.

According to Gartner, vulnerability assessment solutions identify, categorize and prioritize vulnerabilities as well as orchestrate their remediation or mitigation. Their primary focus is vulnerability and security configuration assessments for enterprise risk identification and reduction, and reporting against various compliance standards.. The “Voice of the Customer” is a document that applies a methodology to aggregated Gartner Peer Insights’ reviews in a market to provide an overall perspective for IT decision makers.

So yes — this is a big deal. We feel it validates our strategy and reflects the trust our customers place in us every day. And we’re just getting started.

Check out some of the Gartner Peer Insights reviews for yourself:

What Tenable Vulnerability Management customers are talking about

Below are excerpts from users of Tenable Vulnerability Management:

"Evolution from Basic to Advanced: The Tale of Tenable"

"We switched from a competitor's product and the difference is like Win ME to Win11. Tenable is much more advanced and provides so much more value, we don't even know how they compete in the same category." — Senior IT Manager in Transportation

"Addressing Security Risk: Comprehensive Vulnerability Management"

“Ability to perform vulnerability management on almost anything we have in our complex environment helps reduce risk on public-facing assets like firewalls, VPN concentrators, load-balancers, etc. The vendor is responsive to our needs and always tries to find a solution to the challenges we face. The vendor is actively expanding their offering and not charging us for any of the brilliant new features. The ability to perform CIS Benchmark compliance audits helps drive continuous improvement / minimize drift away from approved designs / standards.” — National Vulnerability Manager in Government

"Tenable's User-friendly Platform Offers Deep Vulnerability Insights"

"I've had an exceptional experience with Tenable. The platform is reliable, user-friendly, and provides deep visibility into our vulnerabilities. It's been a valuable tool in strengthening our security posture." — Senior Security Engineer in Retail

"Tenable: Exceptional Service and Consolidated Platform for Enhanced Security"

“The product is very versatile and provides a full network visualization of vulnerabilities across several different platforms. Their Tenable One product is growing to be the next IT super tool, enabling the single pane of glass for security that analysts have longed for.” — Director, Governance, Risk & Compliance (industry sector not specified)

What Tenable Security Center customers are talking about

Below are excerpts from users of Tenable Security Center:

"Flexibility is Key"

“I enjoy being able to use the data to assist various groups within our organization. The data is consistent and accurate as well as very informative. I like the reporting flexibility along with dashboard as they can be tailored to please anyone.” — Director of Vulnerability Management in Banking

"Tenable Platform: A Robust Solution for Efficient Cybersecurity"

"The Tenable platform is incredibly robust and user-friendly. It provides us with comprehensive insights into our security posture, allowing us to identify and address vulnerabilities quickly and efficiently. What stood out the most was the level of support we received. The Tenable team was always available to answer our questions and provide guidance. Their expertise and willingness to go above and beyond made a difference in our overall experience.” — Cybersecurity Engineer in Manufacturing

"Tenable SC - still the leader for on prem vulnerability assessment and prioritization "

"Tenable continues to provide a leading vulnerability assessment and prioritization platform. The tooling uses Tenable Vulnerability Priority rating to reduce the number of "CVSS high & Criticals" saving time and scope to focus on what are the most dangerous vulnerabilities." — Director, IT & Security Risk Management in Software

What makes Tenable products stand out

Key attributes of Tenable products include:

• Broad coverage across cloud, on-prem and hybrid environments
• Risk-based prioritization using real-world threat intelligence (like VPR)
• Actionable remediation guidance with clear, detailed reports
• Scalability and flexibility for any size organization
• Continuous updates backed by Tenable Research and Data Science
• Easy-to-use interfaces and efficient, automated scanning
• Strong integrations with cloud platforms and security tools
• Proven accuracy with low false positives

Thank you, Tenable customers

We appreciate all our customers for taking the time to share your feedback. Your reviews and input help the team at Tenable better understand your unique vulnerability assessment needs so we can identify what’s working for you — and, just as importantly, what’s not. We have utmost respect for the trust you place in us, and we learn from you every day. For us, vulnerability management is not just a product category. It’s a fundamental part of our mission to help organizations around the world secure their most valuable assets and take a proactive approach to managing their exposures.

Learn more

• Access the 2025 Gartner® Peer Insights™ Customers’ Choice1 for Vulnerability Assessment
• To learn more about this distinction, or to read the reviews written about our products by the cybersecurity professionals who use them, please see the vulnerability assessment page on Gartner Peer Insights.
• If you have a Tenable story to share, please join the crowd at Gartner Peer Insights. Contribute a review today: https://gtnr.io/RY78mMFGR

1Gartner, Voice of the Customer for Vulnerability Assessment, By Peer Contributors, 11 July 2025

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally, PEER INSIGHTS is a registered trademark of Gartner, Inc. and/or its affiliates and is used herein with permission. All rights reserved.

The Gartner Peer Insights Customers’ Choice Badge, Gartner®, and Peer Insights™ are trademarks of Gartner, Inc. and/or its affiliates. All rights reserved. Gartner® Peer InsightsTM content consists of the opinions of individual end users based on their own experiences, and should not be construed as statements of fact, nor do they represent the views of Gartner or its affiliates. Gartner does not endorse any vendor, product or service depicted in this content nor makes any warranties, expressed or implied, with respect to this content, about its accuracy or completeness, including any warranties of merchantability or fitness for a particular purpose.

Тестовая сборка с ядром Linux 6.16 получает обновление, но проблемы остаются.

The Atomic macOS Stealer (AMOS), a notorious infostealer malware targeting Apple’s macOS ecosystem, has undergone a significant upgrade by incorporating a sophisticated backdoor mechanism that facilitates persistent access and remote command execution on infected systems. This enhancement, detailed in a recent report by Moonlock Lab, a cybersecurity arm of MacPaw, transforms AMOS from a mere […]

The post Atomic macOS Stealer Upgraded with Remote Access Backdoor appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Some risks don’t breach the perimeter—they arrive through signed software, clean resumes, or sanctioned vendors still hiding in plain sight. This week, the clearest threats weren’t the loudest—they were the most legitimate-looking. In an environment where identity, trust, and tooling are all interlinked, the strongest attack path is often the one that looks like it belongs. Security teams are

Name: World Wide CTF 2025 (an World Wide CTF event.)
Date: July 26, 2025, noon — 28 July 2025, 12:00 UTC  [add to calendar]
Format: Jeopardy
On-line
Offical URL: https://wwctf.com/
Rating weight: 24.48
Event organizers: World Wide Flags

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

• CVE-2025-20281 Cisco Identity Services Engine Injection Vulnerability
• CVE-2025-20337 Cisco Identity Services Engine Injection Vulnerability
• CVE-2023-2533 PaperCut NG/MF Cross-Site Request Forgery (CSRF) Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

Despite claims by a hacker, French defense company Naval Group has detected no intrusions into its IT environments at the time of writing

Minneapolis-based Allianz Life said “a malicious threat actor gained access to a third-party CRM system” earlier in July, breaching data of a large amount of its customers.

Palo Alto Networks’ Unit 42, the cybercrime group tracked as Muddled Libra also known as Scattered Spider or UNC3944 has demonstrated remarkable resilience and adaptation in 2025, following international law enforcement disruptions in late 2024. Despite federal charges against five suspected members in November 2024, the group has escalated its intrusion operations across sectors including […]

The post Inside Muddled Libra’s Playbook: Call Center Attacks for Initial Breach appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

«Инфосистемы Джет» опубликовала результаты исследования состояния кибербезопасности в промышленном секторе России.