Aggregator

Sophos and SonicWall Patch Critical RCE Flaws Affecting Firewalls and SMA 100 Devices

The Hackers News
9 months ago
Sophos and SonicWall have alerted users of critical security flaws in Sophos Firewall and Secure Mobile Access (SMA) 100 Series appliances that could be exploited to achieve remote code execution.  The two vulnerabilities impacting Sophos Firewall are listed below - CVE-2025-6704 (CVSS score: 9.8) - An arbitrary file writing vulnerability in the Secure PDF eXchange (SPX) feature can lead
The Hacker News

NoName057(16)’s Hackers Attacked 3,700 Unique Devices Over Last Thirteen Months

Cyber Security News
9 months ago

The pro-Russian hacktivist group NoName057(16) has orchestrated a massive distributed denial-of-service campaign targeting over 3,700 unique hosts across thirteen months, according to new research published on July 22, 2025. The group, which emerged in March 2022 shortly after Russia’s full-scale invasion of Ukraine, has maintained an unprecedented operational tempo by launching attacks against an average […]

The post NoName057(16)’s Hackers Attacked 3,700 Unique Devices Over Last Thirteen Months appeared first on Cyber Security News.

Tushar Subhra Dutta

NoName057(16) Hackers Target 3,700 Unique Devices Over the Last 13 Months

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
9 months ago

The pro-Russian hacktivist collective NoName057(16) has been documented executing distributed denial-of-service (DDoS) attacks against over 3,700 unique hosts, predominantly targeting government and public-sector entities in European nations aligned against Russia’s invasion of Ukraine. Emerging in March 2022 amid the full-scale conflict, NoName057(16) leverages its volunteer-driven DDoSia platform to orchestrate large-scale application-layer DDoS campaigns, inundating targets […]

The post NoName057(16) Hackers Target 3,700 Unique Devices Over the Last 13 Months appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Aman Mishra

CVE-2025-8115 | PHPGurukul Taxi Stand Management System 1.0 new-autoortaxi-entry-form.php registrationnumber/licensenumber cross site scripting

VulDB Recent Entries
9 months ago
A vulnerability has been found in PHPGurukul Taxi Stand Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/new-autoortaxi-entry-form.php. The manipulation of the argument registrationnumber/licensenumber leads to cross site scripting. This vulnerability is known as CVE-2025-8115. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2025-4822 | Bayraktar Solar Energies ScadaWatt Otopilot prior 27.05.2025 sql injection (EUVD-2025-22516)

VulDB Recent Entries
9 months ago
A vulnerability, which was classified as critical, has been found in Bayraktar Solar Energies ScadaWatt Otopilot. This issue affects some unknown processing. The manipulation leads to sql injection. The identification of this vulnerability is CVE-2025-4822. The attack may be initiated remotely. There is no exploit available. This product is a managed service. It is not possible for users to maintain vulnerability countermeasures themselves. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-40680 | Capillary CapillaryScope up to 2.4.x on Windows sensitive missing encryption (EUVD-2025-22510)

VulDB Recent Entries
9 months ago
A vulnerability classified as problematic was found in Capillary CapillaryScope up to 2.4.x on Windows. This vulnerability affects unknown code. The manipulation of the argument sensitive leads to missing encryption of sensitive data. This vulnerability was named CVE-2025-40680. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad