Aggregator
CVE-2023-22999 | Linux Kernel up to 5.16.2 dwc3-qcom.c dwc3_qcom_probe dwc3_qcom_create_urs_usb_platdev return value (EUVD-2023-27099)
CVE-2023-23002 | Linux Kernel up to 5.16.2 hci_qca.c qca_serdev_probe devm_gpiod_get_index_optional return value (EUVD-2023-27102)
CVE-2023-23000 | Linux Kernel up to 5.16 drivers/phy/tegra/xusb.c tegra_xusb_find_port_node return value (EUVD-2023-27100 / Nessus ID 236642)
CVE-2023-22998 | Linux Kernel up to 6.0.2 virtgpu_object.c virtio_gpu_object_shmem_init drm_gem_shmem_get_sg_table return value (EUVD-2023-27098 / Nessus ID 236642)
Lunar Spider Campaign: FakeCAPTCHA Used to Exploit CORS Flaws and Deliver Latrodectus Loader
The group Lunar Spider—also known under the aliases Gold SwathMore and Elara—has ramped up a new malicious campaign
The post Lunar Spider Campaign: FakeCAPTCHA Used to Exploit CORS Flaws and Deliver Latrodectus Loader appeared first on Penetration Testing Tools.
祝大家中秋节快乐,万事如意、身体健康!
InForSec祝全球华人学者中秋快乐!
Cisco Talos Exposes UAT-8099: Chinese Group Uses BadIIS Malware on Compromised Servers for SEO Fraud and Credential Theft
A hacker collective known as UAT-8099 is presently conducting an active campaign to promote malicious content in search
The post Cisco Talos Exposes UAT-8099: Chinese Group Uses BadIIS Malware on Compromised Servers for SEO Fraud and Credential Theft appeared first on Penetration Testing Tools.
HackerOne Payouts Hit $81 Million: AI Vulnerability Reports Soar by Over 200%
The vulnerability rewards platform HackerOne has announced that over the past twelve months, white-hat hackers around the world
The post HackerOne Payouts Hit $81 Million: AI Vulnerability Reports Soar by Over 200% appeared first on Penetration Testing Tools.
Microsoft Discontinues Embedded SVG Support in Outlook for Enhanced Security
In September 2025, Microsoft began gradually discontinuing support for embedded SVG images in Outlook for the web and
The post Microsoft Discontinues Embedded SVG Support in Outlook for Enhanced Security appeared first on Penetration Testing Tools.
Windows 11 2025 Update (25H2) Focuses on Security and Legacy Component Removal
Windows 11 has received another major update — version 25H2, officially known as Windows 11 2025 Update. This
The post Windows 11 2025 Update (25H2) Focuses on Security and Legacy Component Removal appeared first on Penetration Testing Tools.
FlipSwitch Rootkit Bypasses Linux Kernel 6.9 Defenses with Surgical Bytecode Hooking
Amid the ongoing duel between Linux kernel developers and authors of malicious modules, each kernel release reshuffles the
The post FlipSwitch Rootkit Bypasses Linux Kernel 6.9 Defenses with Surgical Bytecode Hooking appeared first on Penetration Testing Tools.
OpenSSL 3.6 Released: Major Cryptography Update Adds LMS Signatures and NIST PKEY Support
The final release of OpenSSL 3.6 has been officially published — the culmination of the collective efforts of
The post OpenSSL 3.6 Released: Major Cryptography Update Adds LMS Signatures and NIST PKEY Support appeared first on Penetration Testing Tools.
China Sentences 11 Members of Myanmar’s Min Clan Crime Syndicate to Death
On September 29, the Intermediate People’s Court of Wenzhou delivered a verdict in the high-profile case of the
The post China Sentences 11 Members of Myanmar’s Min Clan Crime Syndicate to Death appeared first on Penetration Testing Tools.
Oracle patches EBS zero-day exploited in Clop data theft attacks
BBC Journalist Targeted in $100M Ransomware Scam, Offered Bitcoin Payout to Become Insider Threat
BBC journalist Joe Tidy found himself entangled in a scenario that ordinarily lurks in the shadows of the
The post BBC Journalist Targeted in $100M Ransomware Scam, Offered Bitcoin Payout to Become Insider Threat appeared first on Penetration Testing Tools.
Klopatra: New Android RAT Uses Hidden VNC and Commercial Obfuscation to Hijack European Banking Accounts
A new Android banking trojan known as Klopatra has infected more than three thousand smartphones within just a
The post Klopatra: New Android RAT Uses Hidden VNC and Commercial Obfuscation to Hijack European Banking Accounts appeared first on Penetration Testing Tools.