Aggregator
Discord says sensitive info stolen during cyberattack on customer service provider
Threat Actors Behind WARMCOOKIE Malware Added New Features to It’s Arsenal
The WARMCOOKIE backdoor first surfaced in mid-2024, delivered primarily via recruiting-themed phishing campaigns that coaxed victims into executing malicious documents. Initially designed as a lightweight implant for remote command execution, its modular codebase enabled rapid adaptation to new objectives. Over the past year, targets have included enterprise networks across multiple regions, with operators exploiting malvertising […]
The post Threat Actors Behind WARMCOOKIE Malware Added New Features to It’s Arsenal appeared first on Cyber Security News.
Лицо вместо паспорта: ИИ и биометрия сделают ставки «чистыми», а крипту — безопасной
Kibana CrowdStrike Connector Flaw Exposes Sensitive Credentials
A security issue in the Kibana CrowdStrike Connector allows attackers to access stored CrowdStrike credentials. The flaw affects multiple versions of Kibana and can expose credentials across spaces within the same deployment. Elastic has released updates to resolve this issue and urges users to upgrade immediately. Vulnerability Details The flaw, tracked as CVE-2025-37728, arises from […]
The post Kibana CrowdStrike Connector Flaw Exposes Sensitive Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Akira
You must login to view this content
伪装成简历某红队窃密样本分析
CISA Releases Two Industrial Control Systems Advisories
CISA released two Industrial Control Systems (ICS) advisories on October 7, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.
- ICSA-25-280-01 Delta Electronics DIAScreen
- ICSA-25-226-31 Rockwell Automation 1756-EN4TR, 1756-EN4TRXT (Update B)
CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.
CISA Adds One Known Exploited Vulnerability to Catalog
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.
- CVE-2025-27915 Synacor Zimbra Collaboration Suite (ZCS) Cross-site Scripting Vulnerability
This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise.
Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.
Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.
OPSWAT’s MetaDefender Drive delivers portable, network-free threat scanning
OPSWAT launched MetaDefender Drive with Smart Touch, a portable cybersecurity device designed for malware and compliance scanning of transient cyber assets regardless of network connectivity. It works across servers, desktops, and laptops before they enter secure environments. The device lets security teams to prevent cyberattacks, which can severely impact operations, including downtime from inbound and transient assets. Purpose-built for critical infrastructure, MetaDefender Drive with Smart Touch is a compact, handheld device featuring physical connectivity controls … More →
The post OPSWAT’s MetaDefender Drive delivers portable, network-free threat scanning appeared first on Help Net Security.
Jaguar Land Rover to restart production following cyberattack
CVE-2025-11426 | projectworlds Advanced Library Management System 1.0 /edit_book.php image unrestricted upload
CVE-2025-11425 | projectworlds Advanced Library Management System 1.0 /edit_admin.php firstname cross site scripting
CVE-2025-11424 | code-projects Web-Based Inventory and POS System 1.0 /login.php emailid sql injection
От репоста до депортации 30 минут. Иммиграционная служба США запускает круглосуточные центры слежки
Submit #666228: projectworlds Advanced Library Management System 1 Unrestricted Upload [Accepted]
Submit #666213: projectworlds Advanced Library Management System 1 Improper Neutralization of Alternate XSS Syntax [Accepted]
Cisco ASA/FTD 0-Day Vulnerability Exploited for Authentication Bypass – PoC Released
Cisco has released advisories for a zero-day exploit chain affecting its Secure Firewall Adaptive Security Appliance (ASA) and Secure Firewall Threat Defense (FTD) software, which is reportedly being used in highly targeted attacks by an unknown threat actor. According to Rapid7, the exploit chain combines two vulnerabilities, CVE-2025-20362 and CVE-2025-20333, to achieve unauthenticated remote code […]
The post Cisco ASA/FTD 0-Day Vulnerability Exploited for Authentication Bypass – PoC Released appeared first on Cyber Security News.