SEC withdraws cyber rules for investment companies, advisers
The move last week came amid the pullback of other SEC regulations.
The post SEC withdraws cyber rules for investment companies, advisers appeared first on CyberScoop.
Aggregator
CVE-2025-5309 | BeyondTrust Remote Support & Privileged Remote Access up to 24.2.4/24.3.4/25.1.1 Chat code injection (EUVD-2025-18420)
5 months 4 weeks ago
A vulnerability was found in BeyondTrust Remote Support & Privileged Remote Access and Remote Support & Privileged Remote Access up to 24.2.4/24.3.4/25.1.1 and classified as very critical. Affected by this issue is some unknown functionality of the component Chat. The manipulation leads to code injection.
This vulnerability is handled as CVE-2025-5309. The attack may be launched remotely. There is no exploit available.
vuldb.com
От удара током до победы над Маском: китайский интерфейс тоньше, точнее, быстрее Neuralink
5 months 4 weeks ago
Кто сказал, что для игры в шахматы нужны руки?
Ubuntu security advisory (AV25-345)
5 months 4 weeks ago
Canadian Centre for Cyber Security
CVE-2025-4565 | protocolbuffers Python-Protobuf up to 4.25.7/5.29.4/6.31.0 recursion (EUVD-2025-18401)
5 months 4 weeks ago
A vulnerability has been found in protocolbuffers Python-Protobuf up to 4.25.7/5.29.4/6.31.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to uncontrolled recursion.
This vulnerability is known as CVE-2025-4565. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Anubis勒索软件添加了擦除器来销毁无法恢复的文件
5 months 4 weeks ago
安全客
西捷航空调查破坏内部系统的网络攻击
5 months 4 weeks ago
安全客
Akira
5 months 4 weeks ago
You must login to view this content
cohenido
Akira
5 months 4 weeks ago
You must login to view this content
cohenido
超过46,000个Grafana实例暴露于帐户接管错误
5 months 4 weeks ago
安全客
CVE-2025-26597 | Red Hat Enterprise Linux 6/7/8/9 X.org X11 Server/TigerVNC XkbChangeTypesOfKey heap-based overflow (EUVD-2025-5382 / Nessus ID 216902)
5 months 4 weeks ago
A vulnerability was found in Red Hat Enterprise Linux 6/7/8/9. It has been classified as critical. This affects the function XkbChangeTypesOfKey of the component X.org X11 Server/TigerVNC. The manipulation leads to heap-based buffer overflow.
This vulnerability is uniquely identified as CVE-2025-26597. Local access is required to approach this attack. There is no exploit available.
vuldb.com
CVE-2025-27400 | OpenMage Magento up to 20.12.2/20.13.0 cross site scripting (GHSA-5pxh-89cx-4668 / EUVD-2025-5563)
5 months 4 weeks ago
A vulnerability was found in OpenMage Magento up to 20.12.2/20.13.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2025-27400. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-3526 | Liferay Portal/DXP HTTP Request resource consumption (EUVD-2025-18403)
5 months 4 weeks ago
A vulnerability was found in Liferay Portal and DXP. It has been classified as critical. Affected is an unknown function of the component HTTP Request Handler. The manipulation leads to resource consumption.
This vulnerability is traded as CVE-2025-3526. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
Washington Post Journalists’ Microsoft Accounts Hacked in Targeted Cyberattack
5 months 4 weeks ago
The Washington Post is conducting a comprehensive investigation into a sophisticated cyberattack that compromised the email accounts of multiple journalists, with security experts and federal authorities examining evidence that suggests the involvement of a foreign government. The intrusion, discovered late Thursday, specifically targeted reporters covering national security and economic policy issues, including those with expertise […]
The post Washington Post Journalists’ Microsoft Accounts Hacked in Targeted Cyberattack appeared first on Cyber Security News.
Guru Baran
Red Hat security advisory (AV25-344)
5 months 4 weeks ago
Canadian Centre for Cyber Security
AI Deepfakes去年推动了40%的高价值加密货币欺诈:报告
5 months 4 weeks ago
安全客
黑客泄露了10,000名VirtualMacOSX客户的数据
5 months 4 weeks ago
安全客
CVE-2025-47013 | Adobe Experience Manager up to 6.5.22 cross site scripting (apsb25-48 / Nessus ID 238053)
5 months 4 weeks ago
A vulnerability has been found in Adobe Experience Manager up to 6.5.22 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2025-47013. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-47019 | Adobe Experience Manager up to 6.5.22 cross site scripting (apsb25-48 / Nessus ID 238053)
5 months 4 weeks ago
A vulnerability was found in Adobe Experience Manager up to 6.5.22 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2025-47019. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-47021 | Adobe Experience Manager up to 6.5.22 cross site scripting (apsb25-48 / Nessus ID 238053)
5 months 4 weeks ago
A vulnerability was found in Adobe Experience Manager up to 6.5.22. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2025-47021. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com