A recently patched vulnerability in Microsoft’s Windows Server Update Services has triggered a wave of attacks involving one
The post Critical WSUS RCE (CVE-2025-59287) Actively Exploited to Deploy ShadowPad Espionage Tool appeared first on Penetration Testing Tools.
A new scheme for distributing malicious links through browser push notifications is rapidly gaining traction and drawing the
The post Matrix Push C2: New Subscription Service Fuels Fileless Browser Push Notification Phishing appeared first on Penetration Testing Tools.
The servicing chain of the U.S. mortgage market has suffered a new disruption following an incident at SitusAMC
The post Mortgage Market Crisis: SitusAMC Breach Exposes Data for Customers of JPMorgan, Citi appeared first on Penetration Testing Tools.
NVIDIA is preparing a series of patches for inclusion in the Linux 6.19 kernel, paving the way for
The post NVIDIA 1.6 Tbps Networking Arrives in Linux 6.19 Kernel via Mellanox MLX5 appeared first on Penetration Testing Tools.
Wscan is a web security scanner that focuses on WEB security. It pays homage to Nmap, which has
The post Wscan: New Open-Source Web Scanner Uses ML for Automated, Personalized Penetration Testing appeared first on Penetration Testing Tools.
An updated patch set for the GRUB2 bootloader has been released publicly, addressing six vulnerabilities at once, most
The post URGENT Patch: GRUB2 Flaws Allow Secure Boot Bypass via Use-After-Free Exploits appeared first on Penetration Testing Tools.
The United Kingdom’s National Crime Agency has announced that it has dismantled an intricate financial network used by
The post UK Dismantles Financial Network Bankrolling Jan Marsalek’s Spy Ring via Crypto appeared first on Penetration Testing Tools.
Hackers gained access on 10 November to Princeton University’s database, which contained the personal information of individuals connected
The post Princeton, Harvard Hacked: AI-Augmented Attacks Fuel Surge in University Breaches appeared first on Penetration Testing Tools.
Israel’s NSO Group is attempting to overturn a ruling by a California federal court that ordered the company
The post NSO Group Appeals Pegasus Spyware Ban, Claims Ruling Threatens Company Closure appeared first on Penetration Testing Tools.
Microsoft has released the out-of-band cumulative update KB5072753 to correct a known issue in which the November hotfix
The post Microsoft Releases Emergency Hotfix KB5072753 to Stop Windows 11 Update Loop appeared first on Penetration Testing Tools.
Nvidia has confirmed that the October security updates for Windows 11 24H2 and Windows 11 25H2 have led
The post NVIDIA Hotfix 581.94 Released to Fix Windows 11 Update Game Performance Drops appeared first on Penetration Testing Tools.
Specialists from Group-IB have released an in-depth analysis of the long-running UNC2891 campaign, which demonstrates how inventive modern
The post UNC2891: Raspberry Pi, Custom Rootkit CAKETAP Fuel Sophisticated ATM Fraud Campaign appeared first on Penetration Testing Tools.
The autumn wave of unpredictable disruptions across major cloud platforms has demonstrated that internal configuration and metadata errors
The post Internal Errors Plague Cloud Giants: AWS, Azure, & Cloudflare Hit by Configuration Outages appeared first on Penetration Testing Tools.
The annual PHP update is a familiar event, yet the release of version 8.5 marks a noteworthy leap
The post PHP 8.5 Released: Pipe Operator & Standards-Compliant URL Handling Arrive appeared first on Penetration Testing Tools.
The NAFFCO company—renowned for large-scale fire-safety projects throughout the Middle East—has found itself at the center of intense
The post Critical Infrastructure at Risk: INC Ransom Claims 1 TB Data Theft from NAFFCO appeared first on Penetration Testing Tools.
The investigation into the corporate data breach affecting Salesforce customers continues to widen. The company is now examining
The post ShinyHunters Claims Gainsight Breach, Threatens Salesforce Extortion Over Customer Data appeared first on Penetration Testing Tools.
A cyber incident at Almaviva, a key contractor for Italy’s national railway group FS Italiane, has resulted in
The post Massive 2.3 TB Leak: Italian Railway Contractor Almaviva Confirms Data Breach appeared first on Penetration Testing Tools.
LdrShuffle Stealthy code execution via modification of the EntryPoint of loaded modules at runtime. Summary Windows processses have various modules
The post LdrShuffle: Stealthy Code Execution via DLL EntryPoint Overwriting appeared first on Penetration Testing Tools.
The chatbot Grok’s peculiar behaviour has once again drawn public attention. This publicly accessible model, embedded directly into
The post Grok Goes Full Fanboy: Chatbot’s Absurd Bias Towards Elon Musk Goes Viral appeared first on Penetration Testing Tools.
A large-scale TamperedChef campaign has once again drawn the attention of security researchers, as attackers continue distributing malware
The post TamperedChef Campaign Uses Forged Certificates to Distribute Malware via Fake Installers appeared first on Penetration Testing Tools.
