Aggregator

Вместо патронов — код. Хакеры открыли огонь по SharePoint.

Red-Hot Startup Noma Security to Deepen Protection for AI Models and Agents
With agentic AI deployments accelerating, Noma Security’s $100 million Series B will fuel development of risk management and runtime protection features. CEO Niv Braun said demand for securing agentic AI has surged among Fortune 500 firms and healthcare and financial institutions.

US Alleged Illumina 'Knowingly' Sold Feds Systems Containing Vulnerabilities
Genomics sequencing firm Illumina Inc. has agreed to pay $9.8 million to resolve False Claims Act whistleblower allegations that it sold software and systems containing cybersecurity vulnerabilities over more than seven years to government agencies.

New Funding, Platform Expansion Aim for Predictive, Autonomous Threat Defense
Safe's $70 million Series C will fund expanded capabilities across its cyber risk quantification, exposure management and third-party oversight tools. The company says its agentic AI vision – cyber AGI – will transform how enterprises manage and mitigate cyberthreats.

Also: Rethinking IT-OT Integration; Previewing Black Hat 2025
In this week's update, four ISMG editors discussed the latest on the ToolShell exploit and the rise of Warlock ransomware, why IT-OT integration may not be the best answer for industrial security and what to expect next week from ISMG Studio at Black Hat Conference 2025.

A vulnerability has been found in Agnitum Outpost Internet Security 8.1 and classified as critical. This vulnerability affects unknown code of the file acs.exe. The manipulation leads to path traversal. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability was named CVE-2013-10046. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Havalite CMS 1.1.7. It has been declared as critical. This vulnerability affects unknown code of the file upload.php. The manipulation leads to unrestricted upload. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability was named CVE-2013-10055. The attack can be initiated remotely. Furthermore, there is an exploit available.

LockBit ransomware operators have adopted an increasingly sophisticated approach to evade detection by leveraging DLL sideloading techniques that exploit the inherent trust placed in legitimate applications. This stealthy method involves tricking legitimate, digitally signed applications into loading malicious Dynamic Link Libraries instead of their intended components, allowing cybercriminals to execute ransomware payloads while masquerading as […]

The post LockBit Operators Using Stealthy DLL Sideloading Technique to Load Malicious App as Legitimate One appeared first on Cyber Security News.

Shopee信息安全团队招聘基础安全工程师/专家

A vulnerability classified as critical has been found in LxCenter Kloxo up to 6.1.12. Affected is an unknown function. The manipulation leads to improper privilege management. This vulnerability is traded as CVE-2012-10022. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.

A vulnerability has been found in MiniWeb HTTP Server up to Build 300 and classified as critical. This vulnerability affects unknown code of the component Management Instrumentation Service. The manipulation leads to unrestricted upload. This vulnerability was named CVE-2013-10047. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic was found in Gohigheris Com Jwhmcs 1.5.0. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument controller leads to path traversal. This vulnerability is known as CVE-2010-1977. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Joomlart Com Javoice 2.0. It has been classified as problematic. Affected is an unknown function of the file index.php. The manipulation of the argument view leads to path traversal. This vulnerability is traded as CVE-2010-1982. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic has been found in Joomlamart Com Jacomment. Affected is an unknown function of the file index.php. The manipulation of the argument view leads to path traversal. This vulnerability is traded as CVE-2010-1601. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in Thethinkery Com Iproperty 1.5.3. This issue affects some unknown processing of the file index.php. The manipulation of the argument ID leads to sql injection. The identification of this vulnerability is CVE-2010-1721. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability has been found in Joomlacomponent.inetlanka Com Multimap 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file index.php of the component IMAP. The manipulation of the argument controller leads to path traversal. This vulnerability is known as CVE-2010-1953. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability has been found in Joomlacomponent.inetlanka Com Drawroot 1.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument controller leads to path traversal. This vulnerability is known as CVE-2010-1723. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Joomlacomponent.inetlanka Com Multiroot 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file index.php. The manipulation of the argument controller leads to path traversal. This vulnerability is handled as CVE-2010-1954. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in iJoomla Com Magazine 3.0.1. This affects an unknown part of the file magazine.functions.php. The manipulation of the argument config leads to code injection. This vulnerability is uniquely identified as CVE-2010-4918. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A sophisticated malware-as-a-service operation orchestrated by Chinese-speaking threat actors has successfully compromised over 11,000 Android devices worldwide through the deployment of PlayPraetor, a powerful Remote Access Trojan designed for on-device fraud. The campaign represents a significant escalation in mobile banking malware operations, with the botnet expanding at an alarming rate of over 2,000 new infections […]

The post 11,000 Android Devices Hacked by Chinese Threats Actors to Deploy PlayPraetor Malware appeared first on Cyber Security News.