Aggregator

A vulnerability was found in Yi IOT XY-3820 6.0.24.10. It has been declared as critical. Affected by this vulnerability is the function cmd_listen of the file cmd. The manipulation leads to improper authorization. This vulnerability is known as CVE-2025-29659. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, was found in Microsoft Windows. This affects an unknown part of the component Media. The manipulation leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2025-29840. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

The ransomware attack that hit McLaren Health Care in 2024 exposed the personal data of 743,000 individuals. McLaren Health Care is notifying over 743,000 people of a data breach discovered on August 5, 2024. McLaren discovered suspicious activity on its and Karmanos Cancer Institute’s systems on August 5, 2024, revealing a data breach incident. McLaren […]

Okta announced Cross App Access, a new protocol to help secure AI agents. As an extension of OAuth, it brings visibility and control to both agent-driven and app-to-app interactions, allowing IT teams to decide what apps are connecting and what information AI agents can access. Why it matters More AI tools are using protocols like Model Context Protocol (MCP) and Agent2Agent (A2A) to connect their AI learning models to relevant data and apps within the … More →

The post Okta Cross App Access secures AI agents in the enterprise appeared first on Help Net Security.

A vulnerability, which was classified as critical, has been found in Bhavesh Chauhan Com Quicknews. This issue affects some unknown processing of the file index.php. The manipulation of the argument newsid leads to sql injection. The identification of this vulnerability is CVE-2009-4785. The attack may be initiated remotely. Furthermore, there is an exploit available.

Similarly to reports from the war in Ukraine, Israel wants owners of surveillance cameras to be aware that Iran is trying to hack the devices to aid in missile targeting.

Cybersecurity researchers have uncovered a sophisticated spearphishing campaign orchestrated by the North Korean threat group Kimsuky, leveraging GitHub as a critical piece of attack infrastructure to distribute malware since March 2025. This operation, identified through analysis of a malicious PowerShell script posted on X, showcases an alarming abuse of legitimate platforms like GitHub and Dropbox […]

The post North Korean Hackers Weaponize GitHub Infrastructure to Distribute Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A notorious threat actor has allegedly listed a previously unknown—or “0day”—exploit for Intelbras routers on a prominent hacker forum. This exploit poses significant risks for many users and organizations that rely on Intelbras hardware for their networking needs.  The sale of such a zero-day exploit is prompting close monitoring from security researchers and professionals, given […]

The post Hackers Allegedly Selling Intelbras Router 0-Day Exploit on Hacker Forums appeared first on Cyber Security News.

Charlotte-based steel giant Nucor Corporation disclosed a significant cybersecurity incident where threat actors gained unauthorized access to the company’s information technology infrastructure.  The breach prompted temporary production shutdowns across multiple facilities as the company implemented emergency containment protocols and engaged federal law enforcement authorities to investigate the intrusion. According to the SEC filing report, Nucor’s […]

The post Steelmaker Nucor Hacked – Attackers Gained Unauthorized Access to IT Systems appeared first on Cyber Security News.

The CoinMarketCap and CoinTelegraph websites have been compromised over the weekend to serve clever phishing pop-ups to visitors, asking them to verify/connect their crypto wallets. The CoinMarketCap compromise CoinMarketCap (aka CMC) is a website popular with crypto investors as it tracks cryptocurrency prices, market capitalizations, and trading volumes. On June 20, 2025, visitors to the site’s homepage were faced with a pop-up that urged them to connect their wallets to maintain access to their CMC … More →

The post CoinMarketCap, Cointelegraph compromised to serve pop-ups to drain crypto wallets appeared first on Help Net Security.

A vulnerability, which was classified as problematic, was found in mojoPortal up to 2.9.0.1. This affects the function ImageHandler of the file Web.Config of the component BetterImageGallery API Controller. The manipulation leads to path traversal. This vulnerability is uniquely identified as CVE-2025-28367. Access to the local network is required for this attack to succeed. There is no exploit available.

A vulnerability was found in HPE Performance Cluster Manager up to 1.12. It has been rated as critical. This issue affects some unknown processing of the component GUI. The manipulation leads to improper authentication. The identification of this vulnerability is CVE-2025-27086. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in flaskBlog 2.6.1. This affects an unknown part of the file /createpost. The manipulation of the argument postContent leads to cross site scripting. This vulnerability is uniquely identified as CVE-2025-28102. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in wix-incubator jam up to e87a6fd85cf8fb5ff37b62b2d68f917219d07ae9. This affects an unknown part of the file jam.py of the component Jinja2 Template Handler. The manipulation of the argument config['template'] leads to improper neutralization of special elements used in a template engine. This vulnerability is uniquely identified as CVE-2025-3841. It is possible to launch the attack on the local host. Furthermore, there is an exploit available. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available.

A vulnerability, which was classified as problematic, was found in Innoshop up to 0.4.1. This affects an unknown part of the file /en/account/orders/_ORDER_ID_. The manipulation of the argument shipping_address_id/billing_address_id leads to direct request. This vulnerability is uniquely identified as CVE-2025-52920. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability classified as problematic was found in InnoShop up to 0.4.1. Affected by this vulnerability is the function Rename of the component File Manager. The manipulation leads to unprotected alternate channel. This vulnerability is known as CVE-2025-52921. The attack can be launched remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Innoshop up to 0.4.1. Affected by this issue is some unknown functionality of the file /api/file_manager/files of the component FileManager API Endpoint. The manipulation of the argument base_folder leads to relative path traversal. This vulnerability is handled as CVE-2025-52922. The attack may be launched remotely. There is no exploit available.

The notorious Confucius hacking organization, first exposed by foreign security vendors in 2016, continues to pose a significant threat to government and military entities across South and East Asia. With attack activities dating back to 2013, this group has recently escalated its operations, targeting critical domestic units and industries with advanced tactics. Unveiling a Sophisticated […]

The post Confucius Hackers Target Government and Military Entities Using WooperStealer Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

McLaren Health Care told regulators that a ransomware attack initially reported in August 2024 breached the data of hundreds of thousands of people.

A critical security vulnerability, tracked as CVE-2025-49825, has been discovered in Teleport, a widely used open-source platform for secure access to servers, cloud applications, and infrastructure. This flaw enables remote attackers to bypass authentication controls, potentially granting unauthorized access to sensitive systems managed by Teleport. The Vulnerability The vulnerability affects Teleport Community Edition versions up […]

The post Critical Teleport Vulnerability Allows Remote Authentication Bypass appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.