Aggregator

In our latest Cyber Insight report, we analyze a politically motivated DDoS attack on a defense contractor. This was a Layer 7 attack, rather than a classic volumetric flood at the network level: it involved targeted pressure on the application layer. Each request must be evaluated by the WAF, involving rate limiting, session tracking, and […]

The post How Cloud Infrastructures Are Becoming Weapons of Attack appeared first on Link11.

Prosecutors said the man spent years using fake online identities to contact children and manipulate them into sending sexually explicit images and videos.

Every time you think the industry has finally stopped doing some reckless, low-effort crap, somebody spins up a fresh box full of sketchy loaders, fake installers, recycled social-engineering bait, and enough exposed infrastructure to make you wonder if prod is just a public beta now - meanwhile some researcher casually drops a technique that turns a "minor" foothold into total account

A vulnerability described as critical has been identified in Linux Kernel up to 6.12.41/6.15.9/6.16.0. The affected element is the function ti_csi2rx_start_dma. Such manipulation leads to denial of service. This vulnerability is traded as CVE-2025-38619. Access to the local network is required for this attack to succeed. There is no exploit available. Upgrading the affected component is recommended.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.16.0. Affected by this issue is the function blk_mq_free_tag_set. This manipulation causes use after free. This vulnerability is handled as CVE-2025-38620. The attack can only be done within the local network. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability identified as problematic has been detected in Linux Kernel up to 6.1.147/6.6.101/6.12.41/6.15.9/6.16.0. This affects the function packet_set_ring/packet_notifier. This manipulation causes race condition. This vulnerability appears as CVE-2025-38617. The attacker needs to be present on the local network. There is no available exploit. You should upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel up to 6.17-rc1. Affected by this vulnerability is the function Accept of the component vsock. Executing a manipulation can lead to use after free. This vulnerability is handled as CVE-2025-38618. The attack can only be done within the local network. There is not any exploit available. Upgrading the affected component is recommended.

A vulnerability marked as problematic has been reported in Linux Kernel up to 6.12.42/6.15.10/6.16.1/6.17-rc1. Affected is an unknown function of the component tls. Performing a manipulation results in out-of-bounds read. This vulnerability is known as CVE-2025-38616. Access to the local network is required for this attack. No exploit is available. It is suggested to upgrade the affected component.

A vulnerability labeled as problematic has been found in Linux Kernel up to 6.7.6. This impacts the function recv of the component tls. Such manipulation leads to infinite loop. This vulnerability is traded as CVE-2024-58239. Access to the local network is required for this attack to succeed. There is no exploit available. The affected component should be upgraded.

Новая схема хакеров Luna Moth, которая ставит в тупик стандартные средства защиты.

Cybercriminals have registered more than 4,300 fraudulent domains impersonating FIFA's official web presence since August 2025.

Anne Keast-Butler, director of GCHQ, said Russia's actions have prompted the agency to defend subsea cables and energy pipelines in British waters, disrupt Russian networks smuggling sanctioned technology and countering “reckless sabotage and assassination attempts.”

Social engineering has always worked because it targets the one component no firewall can patch, human judgment. What has changed […]

The post Social Engineering in the AI Age: How Offense Has Evolved and How to Defend appeared first on HawkEye.

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Daemon Tools, TanStack, and Nx Console flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: The first flaw, tracked as CVE-2026-8398, […]

Defenders don’t need to detect every adversary action to prevent a threat. Here’s a more realistic, optimized approach to testing.

Один завод — 10 000 машин, второй уже строится…

A five-stage exploit chain disclosed by Token Security researchers turned a free Zapier account into write access on Zapier’s public developer SDK packages and on internal packages that load in every authenticated zapier.com session. Each link in the chain was a known anti-pattern. The composition across five systems was the finding. Zapier triaged the report within four days of submission on February 12, 2026, revoked the leaked NPM token, and tightened the underlying AWS role … More →

The post Zapier exploit chain shows how known anti-patterns compose into critical risk appeared first on Help Net Security.

Here’s how we built Town Lake, Cloudflare's unified analytics platform, alongside Skipper, an internal AI agent running on top of it.

A five-step flaw chain in the popular automation service, now patched, could have let a single attacker act as any signed-in user across thousands of connected apps.

The post Zapier fixes bug chain that researchers say risked widespread account takeover appeared first on CyberScoop.