Aggregator

The actor behind the "Contagious Interview" campaign is continuing to refine its tactics and social engineering scams to wrest credentials from macOS users.

Cybercriminals posing as banks drove a major spike in account takeover fraud this year, stealing over $262 million, the FBI warned. The FBI warns of a surge in account takeover fraud, with criminals posing as financial institutions and stealing over $262M since January 2025. Cybercriminals breach online financial, payroll, or health-savings accounts to steal money […]

Разбираемся, как настроить безопасное хранение данных и защитить личную информацию от посторонних.

The law enforcement agency said they have received more than 5,100 complaints about Account Takeover (ATO) fraud since January and have tallied losses exceeding $262 million.

Artificial intelligence (AI) helps us in doing small and big things that are important in our daily lives.…

Lake Superior State University (LSSU) Has Been Claimed a Victim by Qilin Ransomware

Black Friday 2025 is almost here, and early deals are already live across security software, online courses, system administration tools, antivirus products, and VPN services. These discounts are limited-time offers and vary by provider, so if you see something that fits your needs, it's best to act while it's available. [...]

A vulnerability was found in Contao CMS up to 4.13.56/5.3.41/5.6.4. It has been rated as problematic. This impacts the function Template::once. This manipulation of the argument Required causes insufficient type distinction. The identification of this vulnerability is CVE-2025-65960. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is advised.

A vulnerability was found in SIGB PMB 8.0.1.14. It has been declared as critical. This affects an unknown function of the file cms_rest.php. The manipulation results in deserialization. This vulnerability was named CVE-2025-61168. The attack needs to be approached within the local network. There is no available exploit.

A vulnerability was found in Primakon Pi Portal 1.0.18. It has been classified as critical. The impacted element is an unknown function of the file /api/V2/pp_users?email. The manipulation of the argument email leads to improper authentication. This vulnerability is uniquely identified as CVE-2025-64062. The attack is possible to be carried out remotely. No exploit exists.

A vulnerability was found in NVIDIA DGX Spark GB10 and classified as problematic. The affected element is an unknown function of the component SROOT Firmware. Executing manipulation can lead to unchecked return value to null pointer dereference. This vulnerability is handled as CVE-2025-33192. It is possible to launch the attack on the local host. There is not any exploit available.

A vulnerability has been found in NVIDIA DGX Spark GB10 and classified as problematic. Impacted is an unknown function of the component SROOT Firmware. Performing manipulation results in denial of service. This vulnerability is known as CVE-2025-33191. Attacking locally is a requirement. No exploit is available.

A vulnerability, which was classified as critical, was found in NVIDIA DGX Spark GB10. This issue affects some unknown processing of the component SROOT Firmware. Such manipulation leads to memory corruption. This vulnerability is traded as CVE-2025-33195. An attack has to be approached locally. There is no exploit available.

A vulnerability, which was classified as problematic, has been found in NVIDIA DGX Spark GB10. This vulnerability affects unknown code of the component SROOT Firmware. This manipulation causes incorrect behavior order: validate before canonicalize. This vulnerability appears as CVE-2025-33194. The attack requires local access. There is no available exploit.

A vulnerability classified as problematic was found in NVIDIA DGX Spark GB10. This affects an unknown part of the component SROOT Firmware. The manipulation results in improper validation of integrity check value. This vulnerability is reported as CVE-2025-33193. The attack requires a local approach. No exploit exists.

A vulnerability classified as critical has been found in NVIDIA DGX Spark GB10. Affected by this issue is some unknown functionality of the component SROOT Firmware. The manipulation leads to out-of-bounds write. This vulnerability is documented as CVE-2025-33190. The attack needs to be performed locally. There is not any exploit available.

A vulnerability described as critical has been identified in NVIDIA DGX Spark GB10. Affected by this vulnerability is an unknown functionality. Executing manipulation can lead to improper privilege management. This vulnerability is registered as CVE-2025-33188. The attack needs to be launched locally. No exploit is available.