Aggregator

A vulnerability marked as problematic has been reported in Apache bRPC up to 1.14.x. Affected is an unknown function of the component JSON Parser. The manipulation leads to uncontrolled recursion. This vulnerability is uniquely identified as CVE-2025-59789. The attack is possible to be carried out remotely. No exploit exists. It is suggested to upgrade the affected component.

A vulnerability labeled as problematic has been found in Sony INZONE Hub up to 1.0.17.0. This impacts an unknown function. Executing manipulation can lead to uncontrolled search path. This vulnerability is handled as CVE-2025-64772. It is possible to launch the attack on the local host. There is not any exploit available.

A vulnerability identified as critical has been detected in 0x4m4 HexStrike AI 33267047667b9accfbf0fdac1c1c7ff12f3a5512. This affects the function EnhancedCommandExecutor of the component API Endpoint. Performing manipulation results in os command injection. This vulnerability is known as CVE-2025-35028. Remote exploitation of the attack is possible. No exploit is available.

HackerNews 编译，转载请注明出处： ADC Aerospace是美国航空航天与国防领域工程部件制造商，此外也为诺斯罗普·格鲁曼、柯林斯航空航天、飞利浦、霍尼韦尔等众多知名企业提供产品，因此安全风险尤为突出。 勒索软件犯罪集团的惯用运作模式是：以泄露客户数据为要挟逐步施压，迫使受害者选择支付赎金，而非因数据泄露破坏与客户的合作关系。通常，若受害者拒绝支付赎金或拖延谈判，黑客便会公布部分数据片段。 据黑客声称，他们已获取客户文件、预算与财务信息、薪资记录、身份证明文件，以及各类私密个人机密数据。不过，黑客未提供任何数据样本，因此无法核实其声明是否属实。 若此次数据泄露事件属实，ADC 航空航天公司或将面临严重麻烦：一方面，黑客可能在暗网出售被盗信息，值得注意的是，暗网对美国国防承包商相关数据的需求一直居高不下；另一方面，薪资记录中包含大量个人信息，可能被用于身份盗窃；其他个人信息则可能成为黑客实施社会工程学攻击的工具。当攻击者冒充目标行业相关方时，这类攻击往往极具破坏性。 Play 勒索软件是网络犯罪领域的主要势力之一，去年跻身全球最活跃勒索软件犯罪集团前三。 今年8月初，该团伙声称入侵了为美国海军、波音和诺斯罗普·格鲁曼提供商用及军用飞机工业零部件的Jamco Aerospace。 2023年，Play还攻击了爱荷华州帕洛阿尔托县警长办公室和罗德岛州唐纳德·W·怀亚特最高安全等级拘留中心。 其他知名受害方包括云计算公司 Rackspace、德国酒店连锁集团 H-Hotels，以及法国宝马。 根据网络安全公司Adlumin的分析，Play被认为是首批采用间歇性加密技术的勒索软件团伙之一。该方法仅加密系统中的特定固定片段，能更快访问和窃取受害者数据。此后，ALPHV/BlackCat、DarkBit和BianLian等其他知名团伙也采用了类似策略。     消息来源：cybernews； 本文由 HackerNews.cc 翻译整理，封面来源于网络； 转载请注明“转自 HackerNews.cc”并附上原文

基于 Nix 包管理器的发行版 NixOS 释出了代号为 Xantusia 的 NixOS 25.11。主要新特性包括：不依赖 bash 基于 Rust 的初始化系统 nixos-init；COSMIC 桌面环境的 beta 版本；FirewallD 支持；GNOME 49，移除 X11 会话支持，用户仍然可以通过 XWayland 运行 X11 应用；Papers 文档查看器取代 Evince；Showtime 播放器现取代 Totem；nixos-rebuild-ng 默认启用；Syncthing 2.0.0；LLVM 21 等等。

Армия обороны Израиля запретила Android для старших офицеров и переходит на обязательные iPhone — на фоне растущих кибератак и охоты на смартфоны военных.

Offensive cyber activity has moved far beyond a handful of major powers. More governments now rely on digital operations to project influence during geopolitical tension, which raises new risks for organizations caught in the middle. A new policy brief from the Geneva Centre for Security Policy examines how these developments influence international stability and what steps could lower the chance of dangerous escalation. Growing field with low barriers The research shows that at least 40 … More →

The post Offensive cyber power is spreading fast and changing global security appeared first on Help Net Security.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 5.19.1. This affects the function ath9k_hif_usb_rx_cb of the component ath9k. Performing manipulation results in improper initialization. This vulnerability is reported as CVE-2022-50179. The attacker must have access to the local network to execute the attack. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.19.1. This impacts the function il4965_rs_fill_link_cmd of the component wifi. Executing manipulation can lead to off-by-one. This vulnerability appears as CVE-2022-50180. The attacker needs to be present on the local network. There is no available exploit. You should upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.136/5.15.60/5.18.17/5.19.1. It has been declared as critical. Affected is the function virtio_gpu_cmd_get_capset. The manipulation results in null pointer dereference. This vulnerability was named CVE-2022-50181. The attack needs to be approached within the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 5.15.60/5.18.17/5.19.1. Affected by this issue is the function torture_onoff of the file /kvm.sh of the component rcutorture. Performing manipulation results in improper initialization. This vulnerability was named CVE-2022-50177. The attack needs to be approached within the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.18.17/5.19.1. Impacted is the function phy_div of the component wifi. The manipulation results in divide by zero. This vulnerability was named CVE-2022-50178. The attack needs to be approached within the local network. There is no available exploit. You should upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.10.136/5.15.60/5.18.17/5.19.1. The affected element is the function video_device_alloc of the component media. This manipulation causes memory leak. This vulnerability is registered as CVE-2022-50175. The attack requires access to the local network. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.4.210/5.10.136/5.15.60/5.18.17/5.19.1. The impacted element is the function for_each_available_child_of_node. Such manipulation leads to improper update of reference count. This vulnerability is documented as CVE-2022-50176. The attack requires being on the local network. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability described as problematic has been identified in Linux Kernel up to 19964dfb39bda4d7716a71009488f0668ecbcf52. This impacts an unknown function of the component mdp5. The manipulation results in state issue. This vulnerability is known as CVE-2022-50173. Access to the local network is required for this attack. No exploit is available. Upgrading the affected component is recommended.

A vulnerability was found in Linux Kernel up to 5.10.136/5.15.60/5.18.17/5.19.1. It has been declared as critical. This affects the function hinic_get_stats64 of the component net. The manipulation results in denial of service. This vulnerability is known as CVE-2022-50174. Access to the local network is required for this attack. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel up to 5.10.136/5.15.60/5.18.17/5.19.1. Impacted is the function __mt76x02u_mcu_send_msg of the component mt76. The manipulation results in memory leak. This vulnerability is cataloged as CVE-2022-50172. The attack must originate from the local network. There is no exploit available. Upgrading the affected component is recommended.

A vulnerability identified as problematic has been detected in Linux Kernel up to 5.10.136/5.15.60/5.18.17/5.19.1. Affected by this vulnerability is the function dump_backtrace of the component crypto. Performing manipulation results in state issue. This vulnerability was named CVE-2022-50171. The attack needs to be approached within the local network. There is no available exploit. You should upgrade the affected component.

A vulnerability marked as critical has been reported in Linux Kernel up to 5.18.17/5.19.1/80cf4932c2545bc231e933d869511008c36af1e0. This issue affects the function kunit_filter_tests of the component kunit. The manipulation leads to memory leak. This vulnerability is listed as CVE-2022-50170. The attack must be carried out from within the local network. There is no available exploit. It is suggested to upgrade the affected component.