Aggregator
CVE-2025-59481 | F5 BIG-IP up to 15.1.10/16.1.6/17.1.2/17.5.1 iControl REST privilege escalation (K000156642 / Nessus ID 270616)
CVE-2025-61960 | F5 BIG-IP APM Traffic Management Microkernel denial of service (K000156597 / Nessus ID 270618)
CVE-2025-59781 | F5 BIG-IP Next CNF/BIG-IP DNS Query resource consumption (K000150637 / WID-SEC-2025-2308)
CVE-2025-58071 | F5 BIG-IP Next CNF/BIG-IP Next for Kubernetes/BIG-IP IPsec denial of service (K000156746 / WID-SEC-2025-2308)
CVE-2025-47150 | F5 F5OS-A/F5OS-C SNMP resource consumption (K000149820)
G.O.S.S.I.P 阅读推荐 2025-10-15 再战好莱坞
CVE-2025-53474 | F5 BIG-IP APM up to 15.1.10/16.1.6/17.1.2/17.5.1 iRules denial of service (K000156572)
Data in the Dark: The Public Sector on the Dark Web
CISA Warns Of Rapid7 Velociraptor Vulnerability Exploited in Ransomware Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) issued an urgent alert on October 14, 2025, highlighting a critical vulnerability in Rapid7’s Velociraptor endpoint detection and response (EDR) tool. This flaw, stemming from incorrect default permissions, has already been weaponized by threat actors to execute arbitrary commands and seize control of infected endpoints, amplifying risks for […]
The post CISA Warns Of Rapid7 Velociraptor Vulnerability Exploited in Ransomware Attacks appeared first on Cyber Security News.
F5 says hackers stole undisclosed BIG-IP flaws, source code
Прощайте, CD-диски и перфолента. Передача секретной информации теперь оцифрована в военных ведомствах
CVE-2025-10869 | Oct8ne Chatbot 2.3 cross site scripting
CVE-2025-55082 | Eclipse NetX Duo up to 6.4.3 _nx_secure_tls_process_clienthello out-of-bounds (GHSA-8h38-qjhh-mf2h)
CVE-2025-55081 | Eclipse NetX Duo up to 6.4.3 SSL/TLS _nx_secure_tls_process_clienthello buffer over-read (GHSA-5vrv-8j5h-h6h6)
CVE-2025-9640 | Red Hat Enterprise Linux/OpenShift Container Platform Samba vfs_streams_xattr information disclosure
BlackSuit Ransomware Breaches Corporate Network Using Single Compromised VPN Credential
A major manufacturing company fell victim to a swift and devastating ransomware attack after threat actors gained access using just one set of stolen VPN credentials. The attack, carried out by the cybercrime group Ignoble Scorpius, culminated in widespread encryption of virtual machines and brought critical operations to a halt. The Initial Compromise The breach […]
The post BlackSuit Ransomware Breaches Corporate Network Using Single Compromised VPN Credential appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.