Aggregator

A sophisticated malware campaign that exploits legitimate SSH clients, including both the popular PuTTY application and Windows’ built-in OpenSSH implementation, to establish persistent backdoors on compromised systems. The attack demonstrates how cybercriminals are increasingly leveraging trusted administrative tools to evade detection while maintaining unauthorized access to corporate networks. Malware Exploits OpenSSH in Windows The security […]

The post Hackers Weaponized Free SSH Client Putty to Attack Windows Systems With Malware appeared first on Cyber Security News.

Сначала Twitter кричал на весь мир, теперь X шепчет на ушко.

Organizations worldwide are turning to micro-segmentation as a cornerstone technology to combat increasingly sophisticated cyberattacks. Adoption rates are skyrocketing as traditional perimeter-based security models prove inadequate against modern threats. Recent industry data reveals a stark reality: while 70% of cybersecurity professionals agree that micro segmentation is essential for achieving Zero Trust architecture, only 5% of […]

The post Microsegmentation Technical Deep Dive into Network Security appeared first on Cyber Security News.

看雪论坛作者ID：KerryS

Denodo, a provider of logical data management software, recently faced a critical security vulnerability in its Denodo Scheduler product. This vulnerability, tracked as CVE-2025-26147, allows authenticated users to perform remote code execution (RCE) on affected systems, posing significant risks to organizations relying on this scheduling tool for data extraction and integration jobs. Introduction to Denodo […]

The post Critical Denodo Scheduler Flaw Allows Remote Code Execution by Attackers appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Утечка паролей теперь вопрос пары миллисекунд.

Checkmarx uncovers cross-ecosystem attack: fake Python and NPM packages plant backdoor on Windows and Linux, enabling data theft plus remote control.

A vulnerability classified as critical has been found in Multilaser Sirius RE016 MLT1.0. Affected is an unknown function of the file /cgi-bin/cstecgi.cgi of the component Password Change Handler. The manipulation leads to improper authentication. This vulnerability is traded as CVE-2025-5437. It is possible to launch the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

Стол, мяч, ракетка… и тысячи строк кода за каждым ударом робо-руки.

A significant security vulnerability has been discovered in Denodo Scheduler, a data management software component, that allows attackers to execute remote code on affected systems.  The flaw, identified as CVE-2025-26147, exploits a path traversal vulnerability in the Kerberos authentication configuration feature, potentially compromising the security of enterprise data management infrastructure. Path Traversal Vulnerability  The vulnerability […]

The post Denodo Scheduler Vulnerability Let Attackers Execute Remote Code appeared first on Cyber Security News.

A critical, unauthenticated remote code execution vulnerability in vBulletin forum software is now being actively exploited. The vulnerability, which impacts vBulletin versions 5.0.0 through 6.0.3, has been assigned CVE-2025-48827 and CVE-2025-48828 and is now being actively targeted by threat actors, marking it as a Known Exploited Vulnerability (KEV).  Despite patches being available for over a […]

The post Threat Actors Actively Exploiting Critical vBulletin Vulnerability in the Wild appeared first on Cyber Security News.

A vulnerability classified as problematic has been found in Qt up to 5.15.18/6.5.8/6.8.3/6.9.0. Affected is the function qDecodeDataUrl of the component QtCore. The manipulation of the argument charset leads to denial of service. This vulnerability is traded as CVE-2025-5455. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Apple iOS up to 10.3.2. This vulnerability affects unknown code of the component WebKit. The manipulation leads to memory corruption. This vulnerability was named CVE-2017-7061. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Подписчиков — миллионы. Реальных людей — почти ноль.

A vulnerability classified as problematic has been found in gpEasy CMS 1.6.2. Affected is an unknown function. The manipulation of the argument gpcontent leads to cross site scripting. This vulnerability is traded as CVE-2010-2038. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A critical vulnerability in the widely used Roundcube Webmail software allows authenticated attackers to execute arbitrary code remotely.  The vulnerability, discovered through PHP object deserialization flaws, affects all installations running versions 1.6. x and 1.5. One of the popular open-source webmail clients.  Security researcher firs0v reported the flaw, prompting immediate patches in versions 1.6.11 and […]

The post Critical Roundcube Vulnerability Let Attackers Execute Remote Code appeared first on Cyber Security News.

Azure Arc неожиданно стал каналом управления для хакеров — и всё по правилам.

A vulnerability was found in Microsoft Windows 95/98 and classified as problematic. Affected by this issue is some unknown functionality of the component NetBIOS Handler. The manipulation as part of NULL Source Name leads to denial of service. This vulnerability is handled as CVE-2000-0347. The attack may be launched remotely. Furthermore, there is an exploit available. This vulnerability has a historic impact due to its background and reception. It is recommended to upgrade the affected component.

Do you have online accounts you haven't used in years? If so, a bit of digital spring cleaning might be in order.