Aggregator
CVE-2025-10948 | MikroTik RouterOS 7 libjson.so /rest/ip/address/print parse_json_element buffer overflow (EUVD-2025-31088)
CVE-2025-11388 | Tenda AC15 15.03.05.18 /goform/setNotUpgrade newVersion stack-based overflow (EUVD-2025-32710)
CVE-2025-11389 | Tenda AC15 15.03.05.18 /goform/saveAutoQos enable stack-based overflow (EUVD-2025-32709)
CVE-2025-0603 | Callvision Emergency Code up to 2.x sql injection (EUVD-2025-32708)
CVE-2025-10547 | DrayTek Vigor2926 HTTP CGI Request missing initialization (EUVD-2025-32290 / WID-SEC-2025-2206)
CVE-2021-43240 | Microsoft Windows up to Server 2022 NTFS Set Short Name privilege escalation (WID-SEC-2025-2220)
CVE-2021-43245 | Microsoft Windows up to Server 2012 R2 Digital TV Tuner privilege escalation (WID-SEC-2025-2220)
CVE-2021-43237 | Microsoft Windows up to Server 2022 Setup link following (WID-SEC-2025-2220)
CVE-2021-43238 | Microsoft Windows up to Server 2022 Remote Access privilege escalation (WID-SEC-2025-2220)
CVE-2021-43239 | Microsoft Windows up to Server 2022 Recovery Environment Agent (WID-SEC-2025-2220)
Medusa Blog
You must login to view this content
"Мы не хотим ваших денег, мы хотим навредить вашей стране". ENISA проанализировало мотивы хакеров в 2025 году — и 79% из них больше не про бизнес
实战 | 记一次X站逻辑漏洞到到管理员后台
Red Hat, Walmart, Пентагон: хакеры создали альянс для «уничтожения корпораций»
Jaguar Land Rover: Production Halted Post-Hack
In a recent podcast interview with Cybercrime Magazine host, David Braue, Scott Schober, Cyber Expert, Author of "Hacked Again," and CEO of Berkeley Varitronics Systems, covers the recent Jaguar Land Rover hack, the following production halt, what the incident says about the current hacking landscape, and more. The podcast can be listened to in its entirety below.
The post Jaguar Land Rover: Production Halted Post-Hack appeared first on Security Boulevard.
Ransomware Gangs Leverage Remote Access Tools to Gain Persistence and Evade Defenses
Ransomware operators have shifted from opportunistic malware distribution to highly targeted campaigns that exploit legitimate software for stealth and persistence. Emerging in early 2025, several ransomware families began abusing popular remote access tools—such as AnyDesk and Splashtop—to establish footholds within enterprise networks. By hijacking or silently installing these utilities, adversaries bypass security controls that traditionally […]
The post Ransomware Gangs Leverage Remote Access Tools to Gain Persistence and Evade Defenses appeared first on Cyber Security News.
[Control systems] ABB security advisory (AV25-648)
Akira
You must login to view this content
Akira
You must login to view this content