Aggregator

A vulnerability, which was classified as problematic, was found in LabRedesCefetRJ WeGIA up to 3.4.4. This affects an unknown part of the file personalizacao_selecao.php. The manipulation of the argument nome_car leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-53936. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in LabRedesCefetRJ WeGIA up to 3.4.4. Affected by this issue is some unknown functionality of the file personalizacao_selecao.php. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2025-53935. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in LabRedesCefetRJ WeGIA up to 3.4.4. Affected by this vulnerability is an unknown functionality of the file /dao/verificar_recursos_cargo.php of the component HTTP Request Handler. The manipulation leads to missing authentication. This vulnerability is known as CVE-2025-53938. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in LabRedesCefetRJ WeGIA up to 3.4.4. Affected is an unknown function of the file /controle/control.php. The manipulation of the argument cargo leads to sql injection. This vulnerability is traded as CVE-2025-53937. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Cisco Evolved Programmable Network Manager and Prime Infrastructure. It has been rated as critical. This issue affects some unknown processing of the component REST API. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2025-20272. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Cisco Identity Services Engine Software. It has been declared as problematic. This vulnerability affects unknown code of the component IP Access Restriction Feature. The manipulation leads to authentication bypass by assumed-immutable data. This vulnerability was named CVE-2025-20285. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

То, что раньше считалось невозможным, теперь можно измерить — и это пугает.

A vulnerability was found in Cisco Identity Services Engine Software 3.3.0/3.4.0. It has been classified as problematic. This affects an unknown part of the component API Handler. The manipulation leads to injection. This vulnerability is uniquely identified as CVE-2025-20283. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Cisco Unified Contact Center Express and Unified Intelligence Center and classified as critical. Affected by this issue is some unknown functionality of the component Web-based Management Interface. The manipulation leads to server-side request forgery. This vulnerability is handled as CVE-2025-20288. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Cisco Identity Services Engine Software 3.3.0/3.4.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component API Handler. The manipulation leads to injection. This vulnerability is known as CVE-2025-20284. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Cisco Identity Services Engine Software and ISE Passive Identity Connector 3.3.0/3.4.0. Affected is an unknown function of the component API Handler. The manipulation leads to injection. This vulnerability is traded as CVE-2025-20337. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Cisco Unified Contact Center Express and Unified Intelligence Center. This issue affects some unknown processing of the component Web-based Management Interface. The manipulation leads to unrestricted upload. The identification of this vulnerability is CVE-2025-20274. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A sophisticated cybercrime group dubbed “Dark Partners” has emerged as a significant threat to cryptocurrency users worldwide, orchestrating large-scale theft campaigns through an extensive network of fake websites impersonating AI tools, VPN services, and popular software brands. Active since at least May 2025, this financially motivated group has deployed a complex infrastructure spanning over 250 […]

The post Dark Partners Hackers Group Wiping Crypto Wallets With Fake Ai Tools and VPN Services appeared first on Cyber Security News.

European and U.S. law enforcement have disrupted the operations of a pro-Russian hacker group known for launching distributed denial-of-service attacks against Ukraine and its allies.

Reuven “Rubi” Aronashvili, CEO of CYE, asks a blunt question: Why are breaches still rampant when security budgets have never been larger? Drawing on his journey from leading an Israeli red‑team unit to advising Fortune‑500 boards, Aronashvili argues that most companies are still flying blind. Visibility—knowing exactly which assets, vulnerabilities and business processes are at..

The post Bridging the Visibility Gap: 2025 Global Cybersecurity Maturity Report appeared first on Security Boulevard.

Security Leaders Need Deep Observability to Balance Innovation and Risk
Organizations face mounting pressure to accelerate AI adoption while maintaining robust security controls across hybrid cloud environments where traditional tools fall short. This World AI Appreciation Day, it's time to challenge the assumption that rapid innovation comes at the cost of security.

Startup Raises $30M, Uses Risk Intelligence to Preempt Reconnaissance Attacks
Former FireEye and Mandiant leader John Watters unveils iCounter, a new cyber risk intelligence startup focused on targeted attacks and AI-enabled adversaries. Backed by Syn Ventures, the firm aims to transform threat detection with deeper visibility into attacker reconnaissance.

Oracle Cloud Infrastructure Flaw Enabled Malicious File Uploads, Researchers Found
Exploring Oracle Cloud Infrastructure, researchers at Tenable found that Oracle's console-based Code Editor tool failed to block arbitrary file uploads, and could be silently exploited via drive-by attacks to install malware. They said Oracle has now fixed the vulnerability.

Hacking Group UNC6148 Steals Credentials With New OVERSTEP Rootkit, Google Says
A cybercrime group used a backdoor in a fully patched SonicWall appliance to steal credentials and may have sold the stolen data to ransomware groups as part of an ongoing campaign, Google Threat Intelligence Group found. The firm attributed the campaign to a cybercrime group it tracks as UNC6148.

Unknown intruders are targeting fully patched end-of-life SonicWall Secure Mobile Access (SMA) 100 series appliances and deploying a novel, persistent backdoor / rootkit, analysts with Google’s Threat Intelligence Group (GTIG) have warned. The analysts say UNC6148 – as they dubbed the threat group – is likely financially motivated. “An organization targeted by UNC6148 in May 2025 was posted to the ‘World Leaks’ data leak site (DLS) in June 2025, and UNC6148 activity overlaps with publicly … More →

The post SonicWall SMA devices persistently infected with stealthy OVERSTEP backdoor and rootkit appeared first on Help Net Security.