Aggregator

A severe vulnerability in Synology’s DiskStation Manager (DSM) allows remote attackers to execute arbitrary code with no user interaction.  The flaw, disclosed during PWN2OWN 2024, received a Critical severity rating with a CVSS score of 9.8, indicating its potential for widespread exploitation. The primary vulnerability, identified as CVE-2024-10441, stems from improper encoding or escaping of […]

The post Critical Synology Vulnerability Let Attackers Remote Execute Arbitrary Code appeared first on Cyber Security News.

A vulnerability classified as critical has been found in Apache Airflow MySQL Provider up to 6.1.x. Affected is an unknown function. The manipulation leads to sql injection. This vulnerability is traded as CVE-2025-27018. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Elfatek Elektronics ANKA JPD-00028 up to 19.03.2025. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to authentication bypass by capture-replay. The identification of this vulnerability is CVE-2024-12137. The attack can only be done within the local network. There is no exploit available.

A vulnerability was found in Elfatek Elektronics ANKA JPD-00028 up to 19.03.2025. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to missing critical step in authentication. This vulnerability was named CVE-2024-12136. It is possible to launch the attack on the physical device. There is no exploit available.

利用合法系统进程的未使用内存页注入 shellcode，通过内存地址随机化+熵值混淆技术。

Госслужбы возвращаются в прошлый век под натиском кибератак.

TXOne Networks announced Version 3.2 of its Stellar solution, further enhancing its capabilities from endpoint protection to more comprehensive detection and response in operational technology (OT) environments. Stellar simplifies the journey into threat hunting and detection while overcoming the limitations of traditional information technology (IT) endpoint detection and response (EDR) solutions, which can disrupt OT operations and productivity. Purpose-built for OT environments, Stellar ensures effective security without compromising system stability. “We have observed that alert … More →

The post TXOne Networks Stellar 3.2 helps organizations make informed security choices appeared first on Help Net Security.

Манипуляция напряжением физически выводит из строя уязвимое оборудование.

A critical vulnerability in Windows File Explorer, identified as CVE-2025-24071, enables attackers to steal NTLM hashed passwords without any user interaction beyond simply extracting a compressed file.  Security researchers have released a proof-of-concept exploit demonstrating this high-severity flaw, which Microsoft patched in its March 2025 updates. Microsoft Windows File Explorer Vulnerability The vulnerability, dubbed “NTLM […]

The post Microsoft Windows File Explorer Vulnerability Let Attackers Perform Network Spoofing – PoC Released appeared first on Cyber Security News.

Threat actors are allegedly offering root access to Canon Inc.’s internal firewall systems on underground hacking forums.  According to security monitoring firm ThreatMon, the advertisement appeared on a popular dark web marketplace, claiming to provide administrator-level access to the Japanese camera giant’s network infrastructure. The threat actor’s listing, verified by multiple security analysts, advertises privileged […]

The post Hackers Allegedly Selling Firewall Access to Canon Inc on Hacking Forums appeared first on Cyber Security News.

A vulnerability was found in ThemeMove MinimogWP Plugin up to 3.7.0 on WordPress. It has been classified as critical. This affects an unknown part. The manipulation of the argument template leads to improper control of filename for include/require statement in php program ('php remote file inclusion'). This vulnerability is uniquely identified as CVE-2024-13790. It is possible to initiate the attack remotely. There is no exploit available.

Keysight Technologies announces the expansion of its Keysight Vision Network Packet Brokers (NPBs), with the introduction of AI Insight Brokers. These enhanced NPBs are designed to improve the performance of AI-driven cybersecurity operations such as threat detection, incident response, and forensics. The AI Insight Broker is purpose built to support and leverage the capabilities of AI software, including Keysight’s newly developed AI Stack. As cyber threats continue to evolve, organizations need to look for new … More →

The post Keysight AI Insight Brokers accelerates threat detection and response appeared first on Help Net Security.

Масштабная атака на Android-устройства осталась незамеченной до последнего момента.

介绍一部分信息收集的方法