183Articles
9Categories
2025-06-10Date
🚨 CISA KEV 5[−]
10 Jun KEVCISA Adds Erlang SSH and Roundcube Flaws to Known Exploited Vulnerabilities CatalogThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added two critical security flaws impacting Erlang/Open Telecom Platform (OTP) SSH and Roundcube to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerab…THEHACKERNEWS.COM
10 Jun KEVCISA Issues Alert on Erlang/OTP SSH Server RCE Vulnerability Under Active ExploitationThe Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding a critical vulnerability in Erlang/OTP SSH server implementations that allows attackers to execute arbitrary commands without authentication. The vulnerability, designated as CVE-20…GBHACKERS.COM
10 Jun KEVCISA Adds Erlang SSH and Roundcube Flaws to Known Exploited Vulnerabilities Catalogsubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2025/06/cisa-adds-erlang-ssh-and-roundcube.htmlSH.ITJUST.WORKS
10 Jun KEVCISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation.  CVE-2025-24016 Wazuh Server Deserialization of Untrusted Data Vulnerability CVE-2025-33053 Web Distributed Authoring and Versioning (WebDA…CISA.GOV
10 Jun KEVMirai botnet weaponizes PoC to exploit Wazuh open-source XDR flawResearchers warn that several botnets built on the Mirai malware codebase are targeting outdated Wazuh XDR and SIEM management servers. For the past several months, the botnets have been exploiting a critical remote code execution vulnerability in Wazuh that was patched in Februa…CSOONLINE.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 75[−]
10 JunManageEngine Exchange Reporter Plus Vulnerability Enables Remote Code ExecutionA critical security vulnerability has been discovered in ManageEngine Exchange Reporter Plus, a popular email monitoring and reporting solution, that could allow attackers to execute arbitrary commands on target servers. The vulnerability, assigned CVE-2025-3835, affects all buil…GBHACKERS.COM
10 JunOver 84,000 Roundcube Webmail Installations Exposed to Remote Code VulnerabilitiesSecurity researchers have identified a critical vulnerability in Roundcube Webmail that affects over 84,000 unpatched installations worldwide, according to data from The Shadowserver Foundation. The vulnerability, designated CVE-2025-49113, enables authenticated attackers to exec…GBHACKERS.COM
10 JunExploitation of Critical Wazuh Server RCE Vulnerability Leads to Mirai Variant DeploymentThe Akamai Security Intelligence and Response Team (SIRT) has uncovered active exploitation of a critical remote code execution (RCE) vulnerability in Wazuh servers, identified as CVE-2025-24016 with a CVSS score of 9.9. Disclosed in February 2025, this vulnerability affects Wazu…GBHACKERS.COM
10 JunIvanti Workspace Control Vulnerability Lets Attackers Remotely Exploit To Steal the CredentialIvanti has released a critical security update for its Workspace Control software, patching three high-severity vulnerabilities that could allow attackers to compromise sensitive credentials. The vulnerabilities, identified as CVE-2025-5353, CVE-2025-22463, and CVE-2025-22455, af…GBHACKERS.COM
10 JunCVE-2025-47957 Microsoft Word Remote Code Execution VulnerabilityUse after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-29828 Windows Schannel Remote Code Execution VulnerabilityMissing release of memory after effective lifetime in Windows Cryptographic Services allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-30399 .NET and Visual Studio Remote Code Execution VulnerabilityUntrusted search path in .NET and Visual Studio allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-32710 Windows Remote Desktop Services Remote Code Execution VulnerabilityUse after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-32712 Win32k Elevation of Privilege VulnerabilityUse after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-32713 Windows Common Log File System Driver Elevation of Privilege VulnerabilityHeap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-32714 Windows Installer Elevation of Privilege VulnerabilityImproper access control in Windows Installer allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-32715 Remote Desktop Protocol Client Information Disclosure VulnerabilityOut-of-bounds read in Remote Desktop Client allows an unauthorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-32716 Windows Media Elevation of Privilege VulnerabilityOut-of-bounds read in Windows Media allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-32718 Windows SMB Client Elevation of Privilege VulnerabilityInteger overflow or wraparound in Windows SMB allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-32719 Windows Storage Management Provider Information Disclosure VulnerabilityOut-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-32720 Windows Storage Management Provider Information Disclosure VulnerabilityOut-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-32721 Windows Recovery Driver Elevation of Privilege VulnerabilityImproper link resolution before file access ('link following') in Windows Recovery Driver allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-32722 Windows Storage Port Driver Information Disclosure VulnerabilityImproper access control in Windows Storage Port Driver allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-32724 Local Security Authority Subsystem Service (LSASS) Denial of Service VulnerabilityUncontrolled resource consumption in Windows Local Security Authority Subsystem Service (LSASS) allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-33058 Windows Storage Management Provider Information Disclosure VulnerabilityOut-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-33059 Windows Storage Management Provider Information Disclosure VulnerabilityOut-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-33060 Windows Storage Management Provider Information Disclosure VulnerabilityOut-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-33061 Windows Storage Management Provider Information Disclosure VulnerabilityOut-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-33062 Windows Storage Management Provider Information Disclosure VulnerabilityOut-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-33063 Windows Storage Management Provider Information Disclosure VulnerabilityOut-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-33064 Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityHeap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-33065 Windows Storage Management Provider Information Disclosure VulnerabilityOut-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-33066 Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityHeap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-33067 Windows Task Scheduler Elevation of Privilege VulnerabilityImproper privilege management in Windows Kernel allows an unauthorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-33075 Windows Installer Elevation of Privilege VulnerabilityImproper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47160 Windows Shortcut Files Security Feature Bypass VulnerabilityProtection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-47162 Microsoft Office Remote Code Execution VulnerabilityHeap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47953 Microsoft Office Remote Code Execution VulnerabilityUse after free in Microsoft Office allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47955 Windows Remote Access Connection Manager Elevation of Privilege VulnerabilityImproper privilege management in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47956 Windows Security App Spoofing VulnerabilityExternal control of file name or path in Windows Security App allows an authorized attacker to perform spoofing locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-33071 Windows KDC Proxy Service (KPSSVC) Remote Code Execution VulnerabilityUse after free in Windows KDC Proxy Service (KPSSVC) allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-47962 Windows SDK Elevation of Privilege VulnerabilityImproper access control in Windows SDK allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47969 Windows Virtualization-Based Security (VBS) Information Disclosure VulnerabilityExposure of sensitive information to an unauthorized actor in Windows Hello allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-24068 Windows Storage Management Provider Information Disclosure VulnerabilityBuffer over-read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-24069 Windows Storage Management Provider Information Disclosure VulnerabilityOut-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-24065 Windows Storage Management Provider Information Disclosure VulnerabilityOut-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-32725 DHCP Server Service Denial of Service VulnerabilityProtection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-33050 DHCP Server Service Denial of Service VulnerabilityProtection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-33052 Windows DWM Core Library Information Disclosure VulnerabilityUse of uninitialized resource in Windows DWM Core Library allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-33053 Web Distributed Authoring and Versioning (WEBDAV) Remote Code Execution VulnerabilityExternal control of file name or path in WebDAV allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-33055 Windows Storage Management Provider Information Disclosure VulnerabilityOut-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-33056 Windows Local Security Authority (LSA) Denial of Service VulnerabilityImproper access control in Microsoft Local Security Authority Server (lsasrv) allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-33057 Windows Local Security Authority (LSA) Denial of Service VulnerabilityNull pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-33068 Windows Standards-Based Storage Management Service Denial of Service VulnerabilityUncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-33069 Windows App Control for Business Security Feature Bypass VulnerabilityImproper verification of cryptographic signature in App Control for Business (WDAC) allows an unauthorized attacker to bypass a security feature locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-33070 Windows Netlogon Elevation of Privilege VulnerabilityUse of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate privileges over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-33073 Windows SMB Client Elevation of Privilege VulnerabilityImproper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-47163 Microsoft SharePoint Server Remote Code Execution VulnerabilityDeserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-47164 Microsoft Office Remote Code Execution VulnerabilityUse after free in Microsoft Office allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47165 Microsoft Excel Remote Code Execution VulnerabilityUse after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47166 Microsoft SharePoint Server Remote Code Execution VulnerabilityDeserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-47167 Microsoft Office Remote Code Execution VulnerabilityAccess of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47168 Microsoft Word Remote Code Execution VulnerabilityUse after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47169 Microsoft Word Remote Code Execution VulnerabilityHeap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47170 Microsoft Word Remote Code Execution VulnerabilityUse after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47171 Microsoft Outlook Remote Code Execution VulnerabilityImproper input validation in Microsoft Office Outlook allows an authorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47172 Microsoft SharePoint Server Remote Code Execution VulnerabilityImproper neutralization of special elements used in an sql command ('sql injection') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-47173 Microsoft Office Remote Code Execution VulnerabilityImproper input validation in Microsoft Office allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47174 Microsoft Excel Remote Code Execution VulnerabilityHeap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47175 Microsoft PowerPoint Remote Code Execution VulnerabilityUse after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47176 Microsoft Outlook Remote Code Execution Vulnerability'.../...//' in Microsoft Office Outlook allows an authorized attacker to execute code locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-3052 Cert CC: CVE-2025-3052 InsydeH2O Secure Boot BypassUntrusted pointer dereference in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47959 Visual Studio Remote Code Execution VulnerabilityImproper neutralization of special elements used in a command ('command injection') in Visual Studio allows an authorized attacker to execute code over a network.MSRC.MICROSOFT.COM
10 JunCVE-2025-47968 Microsoft AutoUpdate (MAU) Elevation of Privilege VulnerabilityImproper input validation in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
10 JunCVE-2025-47977 Nuance Digital Engagement Platform Spoofing VulnerabilityImproper neutralization of input during web page generation ('cross-site scripting') in Nuance Digital Engagement Platform allows an authorized attacker to perform spoofing over a network.MSRC.MICROSOFT.COM
10 Jun KEVMicrosoft Windows WebDAV 0-Day RCE Vulnerability Actively Exploited in The WildA critical zero-day vulnerability in Microsoft Windows, designated CVE-2025-33053, has been actively exploited by the advanced persistent threat (APT) group Stealth Falcon. The flaw, enabling remote code execution (RCE) through manipulation of a system’s working directory, was ad…GBHACKERS.COM
10 JunNew Secure Boot flaw lets attackers install bootkit malware, patch nowSecurity researchers have disclosed a new Secure Boot bypass tracked as CVE-2025-3052 that can be used to turn off security on PCs and servers and install bootkit malware. [...]BLEEPINGCOMPUTER.COM
10 JunStealth Falcon's Exploit of Microsoft Zero Day Vulnerability; Middle Eastern Cyber Espionage.submitted by Pro to cybersecurity 2 points | 0 comments https://research.checkpoint.com/2025/stealth-falcon-zero-day/ Check Point Research (CPR) discovered a new campaign conducted by the APT group Stealth Falcon. The attack used a .url file that exploited a zero-day vulnerabilit…INFOSEC.PUB
10 JunStealth Falcon's Exploit of Microsoft Zero Day Vulnerability; Middle Eastern Cyber Espionage.submitted by Pro to cybersecurity 1 points | 0 comments https://research.checkpoint.com/2025/stealth-falcon-zero-day/ Check Point Research (CPR) discovered a new campaign conducted by the APT group Stealth Falcon. The attack used a .url file that exploited a zero-day vulnerabilit…SH.ITJUST.WORKS
10 JunCVE-2025-32717 Microsoft Word Remote Code Execution VulnerabilityMicrosoft is announcing the availability of the security updates for Microsoft Office 365. Customers running Office 365 should log in ensure you have the latest update to be protected from this vulnerability. See the [Release Notes](https://learn.microsoft.com/en-us/officeupdates…MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 38[−]
10 JunPoC Exploit Released for Fortinet 0-Day Vulnerability that Allows Remote Code Executionsubmitted by cm0002 to cybersecurity 2 points | 0 comments https://cybersecuritynews.com/poc-exploit-fortinet-0-day-vulnerability/INFOSEC.PUB
10 JunGoogle Vulnerability Allowed Hackers to Access User Phone NumbersA security researcher has disclosed a critical vulnerability in Google’s account recovery system that allowed attackers to brute-force and obtain the phone numbers of any Google user. The vulnerability , discovered in 2025, exploited Google’s username recovery form th…GBHACKERS.COM
10 JunVulnerability in DanaBot Malware C2 Server Leaks Threat Actor Usernames and Crypto KeysA severe vulnerability in the command-and-control (C2) infrastructure of the notorious DanaBot malware has been uncovered, potentially exposing critical data belonging to threat actors. Researchers have identified a misconfiguration in the server setup that inadvertently leaks us…GBHACKERS.COM
10 JunSensata Technologies Faces Disruption Due to Ransomware AttackSensata Technologies, Inc., a major technology company based in Attleboro, Massachusetts, has disclosed a significant cybersecurity incident that compromised personal information of hundreds of individuals. The external system breach, discovered in late May, affected at least 362…GBHACKERS.COM
10 JunBringing CISA's Secure by Design Principles to OT Systems - Matthew Rogers - ASW #334CISA has been championing Secure by Design principles. Many of the principles are universal, like adopting MFA and having opinionated defaults that reduce the need for hardening guides. Matthew Rogers talks about how the approach to Secure by Design has to be tailored for Operati…YOUTUBE.COM
10 JunExploited Vulnerability Impacts Over 80,000 Roundcube ServersExploitation of a critical-severity RCE vulnerability in Roundcube started only days after a patch was released. The post Exploited Vulnerability Impacts Over 80,000 Roundcube Servers appeared first on SecurityWeek .SECURITYWEEK.COM
10 JunSAP Security Patch Day: 14 Vulnerabilities Resolved Across Various ProductsSAP’s June 10, 2025 Security Patch Day delivered critical security updates addressing 14 distinct vulnerabilities across the enterprise software portfolio. The security notes span severity levels from Critical (CVSS 9.6) to Low (CVSS 3.0), encompassing core platform compone…GBHACKERS.COM
10 JunMalicious Actors Exploit SoraAI’s Popularity & GitHub to Distribute MalwareThreat actors are leveraging the growing popularity of OpenAI’s Sora, a cutting-edge video generation model, to distribute malicious software. Disguised as a legitimate shortcut file named “SoraAI.lnk,” this information-stealing malware mimics the branding of Sora to …GBHACKERS.COM
10 JunMulticloud security automation is essential — but no silver bulletMulticloud architectures are becoming more common across enterprises, as they enable IT leaders to strategically choose best-of-breed services from multiple providers. But with flexibility comes greater complexity, and security challenges can compound quickly. Cloud providers dif…CSOONLINE.COM
10 JunRussia-linked PathWiper malware hits Ukrainian infrastructureA destructive new malware, dubbed PathWiper, has struck Ukraine’s critical infrastructure, erasing data and disabling essential systems, according to a recent Cisco Talos report. Attributed with high confidence to a Russia-linked advanced persistent threat (APT) group, the cybera…CSOONLINE.COM
10 JunResearcher Found Flaw to Discover Phone Numbers Linked to Any Google AccountGoogle has stepped in to address a security flaw that could have made it possible to brute-force an account's recovery phone number, potentially exposing them to privacy and security risks. The issue, according to Singaporean security researcher "brutecat," leverages an issue in …THEHACKERNEWS.COM
10 JunIndian Authorities Bust Cybercriminals Posing as Microsoft Tech SupportIndia’s Central Bureau of Investigation (CBI), the nation’s federal law enforcement agency, launched a sweeping operation targeting cyber-enabled financial fraud networks. Raids at 19 locations across India dismantled a sophisticated tech support scam operation impers…GBHACKERS.COM
10 JunCritical Vulnerability Patched in SAP NetWeaverSAP has fixed a critical NetWeaver vulnerability allowing attackers to bypass authorization checks and escalate their privileges. The post Critical Vulnerability Patched in SAP NetWeaver appeared first on SecurityWeek .SECURITYWEEK.COM
10 JunNew npm threats can erase production systems with a single requestTwo malicious npm packages have been found posing as legitimate utilities to silently install backdoors for complete production wipeout. According to Socket research, the packages “express-api-sync” and “system-health-sync-api,” are designed for sabotage rather than financial gai…CSOONLINE.COM
10 JunFive Zero-Days, 15 Misconfigurations Found in Salesforce Industry CloudSecurity researchers uncover critical flaws and widespread misconfigurations in Salesforce’s industry-specific CRM solutions. The post Five Zero-Days, 15 Misconfigurations Found in Salesforce Industry Cloud appeared first on SecurityWeek .SECURITYWEEK.COM
10 JunGoogle Vulnerability Allowed Hackers to Access User Phone Numberssubmitted by kid to cybersecurity 4 points | 0 comments https://gbhackers.com/google-vulnerability/SH.ITJUST.WORKS
10 JunTwo Botnets, One Flaw: Mirai Spreads Through Wazuh Vulnerability | Akamaisubmitted by kid to cybersecurity 1 points | 0 comments https://www.akamai.com/blog/security-research/botnets-flaw-mirai-spreads-through-wazuh-vulnerabilitySH.ITJUST.WORKS
10 JunCritical Vulnerability in Lovable’s Security Policies Allows Malicious Code InjectionSecurity researchers have uncovered a widespread vulnerability in Lovable’s AI-powered development platform that exposes sensitive user data and enables malicious code injection across hundreds of applications. The critical vulnerability, discovered on March 20, 2025, affec…GBHACKERS.COM
10 JunNew SharePoint Phishing Campaigns Employing Deceptive Lick TechniquesSecurity analysts at CyberProof’s Security Operations Center (SOC) have identified a sharp rise in phishing campaigns leveraging Microsoft SharePoint to bypass modern detection systems. Unlike traditional phishing attempts that rely on embedded malicious links, these sophisticate…GBHACKERS.COM
10 JunISPConfig Vulnerability Allows Privilege Escalation to Superadmin and PHP Code Injection ExploitA critical security vulnerability has been identified in ISPConfig version 3.2.12p1, a widely used open-source web hosting control panel. The vulnerability allows authenticated attackers to escalate their privileges to that of a superadmin and execute arbitrary PHP code remotely,…GBHACKERS.COM
10 JunHackers Stole 300,000 Crash Reports From Texas Department of TransportationThe Texas Department of Transportation has disclosed a data breach impacting the personal information included in 300,000 crash reports. The post Hackers Stole 300,000 Crash Reports From Texas Department of Transportation appeared first on SecurityWeek .SECURITYWEEK.COM
10 JunHackers Persist in Using ConnectWise ScreenConnect Tool to Distribute MalwareHackers continue to exploit the ConnectWise ScreenConnect remote management and monitoring (RMM) tool to deploy malicious payloads, with a focus on financial organizations. An independent researcher first reported a potential critical vulnerability in ScreenConnect versions 23.9.…GBHACKERS.COM
10 JunSevere SAP NetWeaver Vulnerability Allows Attackers to Bypass Authorization ChecksSAP has released nineteen security patches in its June Patch Day, addressing critical vulnerabilities that could allow attackers to bypass authorization controls and escalate privileges across multiple enterprise systems. The update includes two HotNews Notes and seven High Prior…GBHACKERS.COM
10 JunSeraphic Security Unveils BrowserTotal™ – Free AI-Powered Browser Security Assessment for EnterprisesAvailable to the public and debuting at the Gartner Security & Risk Management Summit, Browser Total is a first of its kind browser security assessment tool conducting more than 120 tests to provide posture standing, emerging threat insights, URL analysis, extension risks, an…CSOONLINE.COM
10 JunCurl Is EVERYWHERE! 20 Billion Installs?!Curl is everywhere—literally! With an estimated 20 billion installations, this tiny but mighty tool is one of the most widely used software programs in the world. But how did it get here? In this clip, Daniel Stenberg, the creator of Curl, reveals just how deeply embedded it is i…YOUTUBE.COM
10 JunCISA Releases Four Industrial Control Systems AdvisoriesCISA released four Industrial Control Systems (ICS) advisories on June 10, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-160-01 SinoTrack GPS Receiver ICSA-25-160-02 Hitachi Energy Relion 67…CISA.GOV
10 Jun KEVMicrosoft June 2025 Patch Tuesday fixes exploited zero-day, 66 flawsToday is Microsoft's June 2025 Patch Tuesday, which includes security updates for 66 flaws, including one actively exploited vulnerability and another that was publicly disclosed. [...]BLEEPINGCOMPUTER.COM
10 JunSAP NetWeaver Vulnerability Allows Attackers to Escalate PrivilegesA critical vulnerability in the SAP NetWeaver Application Server AS ABAP has been disclosed under SAP Security Note #3600840, carrying a near-maximum CVSS score of 9.6. This flaw, rooted in a Missing Authorization Check within the Remote Function Call (RFC) framework, poses a sev…GBHACKERS.COM
10 JunCritical Vulnerability Patched in SAP NetWeaver - SecurityWeeksubmitted by kid to cybersecurity 2 points | 0 comments https://www.securityweek.com/critical-vulnerability-patched-in-sap-netweaver/SH.ITJUST.WORKS
10 JunMicrosoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’Redmond warns that external control of a file name or path in WebDAV "allows an unauthorized attacker to execute code over a network." The post Microsoft Patch Tuesday Covers WebDAV Flaw Marked as ‘Already Exploited’ appeared first on SecurityWeek .SECURITYWEEK.COM
10 JunCode Execution Flaws Haunt Adobe Acrobat Reader, Adobe CommercePatch Tuesday: Adobe documents hundreds of bugs across multiple products and warns of code execution, feature bypass risks. The post Code Execution Flaws Haunt Adobe Acrobat Reader, Adobe Commerce appeared first on SecurityWeek .SECURITYWEEK.COM
10 JunResearchers Uncover 20+ Configuration Risks, Including Five CVEs, in Salesforce Industry CloudCybersecurity researchers have uncovered over 20 configuration-related risks affecting Salesforce Industry Cloud (aka Salesforce Industries), exposing sensitive data to unauthorized internal and external parties. The weaknesses affect various components like FlexCards, Data Mappe…THEHACKERNEWS.COM
10 Jun KEVMicrosoft Patch Tuesday June 2025 – 66 Vulnerabilities Patched Including 2 Zero-DayMicrosoft has released its June 2025 Patch Tuesday security updates, addressing a total of 66 vulnerabilities across its software ecosystem. This month’s updates include fixes for ten critical vulnerabilities and two zero-day flaws, one of which is actively exploited in the wild …GBHACKERS.COM
10 JunMicrosoft Patch Tuesday June 2025, (Tue, Jun 10th)Microsoft today released patches for 67 vulnerabilities. 10 of these vulnerabilities are rated critical. One vulnerability has already been exploited and another vulnerability has been publicly disclosed before today. ISC.SANS.EDU
10 JunDanaBot malware operators exposed via C2 bug added in 2022A vulnerability in the DanaBot malware operation introduced in June 2022 update led to the identification, indictment, and dismantling of their operations in a recent law enforcement action. [...]BLEEPINGCOMPUTER.COM
10 JunCritical Patches Issued for Microsoft Products, June 10, 2025Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, o…CISECURITY.ORG
10 JunMultiple Vulnerabilities in Mozilla Firefox Could Allow for Arbitrary Code ExecutionMultiple vulnerabilities have been discovered in Mozilla Firefox, the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web browser used to access the Internet. Successful exploitation of the most severe of these vulnerabilities could allow for a…CISECURITY.ORG
10 JunMultiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code ExecutionMultiple vulnerabilities have been discovered in Adobe products, the most severe of which could allow for arbitrary code execution. Adobe InCopy is a word processor within Adobe Creative Cloud that allows copywriters and editors to write, edit, and format text in InDesign documen…CISECURITY.ORG
📋 SECURITY BULLETINS 2[−]
10 JunIvanti Workspace Control hardcoded key flaws expose SQL credentialsIvanti has released security updates to fix three high-severity hardcoded key vulnerabilities in the company's Workspace Control (IWC) solution. [...]BLEEPINGCOMPUTER.COM
10 JunAdobe Releases Patch Fixing 254 Vulnerabilities, Closing High-Severity Security GapsAdobe on Tuesday pushed security updates to address a total of 254 security flaws impacting its software products, a majority of which affect Experience Manager (AEM). Of the 254 flaws, 225 reside in AEM, impacting AEM Cloud Service (CS) as well as all versions prior to and inclu…THEHACKERNEWS.COM
📢 SECURITY ADVISORIES 10[−]
🔥 INCIDENT REPORTING 13[−]
10 JunSensata Technologies says personal data stolen by ransomware gangsubmitted by cm0002 to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/sensata-technologies-says-personal-data-stolen-by-ransomware-gang/INFOSEC.PUB
10 JunWhole Foods Distributor United Natural Foods Hit by CyberattackUnited Natural Foods has taken some systems offline after detecting unauthorized activity on its IT systems, causing disruptions to operations. The post Whole Foods Distributor United Natural Foods Hit by Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
10 JunWiredBucks - 918,529 breached accountsIn May 2022, the now defunct social media influencer platform WiredBucks suffered a data breach that was later redistributed as part of a larger corpus of data . The incident exposed over 900k email and IP addresses alongside names, usernames, earnings via the platform, physical …HAVEIBEENPWNED.COM
10 JunRare Werewolf APT Uses Legitimate Software in Attacks on Hundreds of Russian EnterprisesThe threat actor known as Rare Werewolf (formerly Rare Wolf) has been linked to a series of cyber attacks targeting Russia and the Commonwealth of Independent States (CIS) countries. "A distinctive feature of this threat is that the attackers favor using legitimate third-party so…THEHACKERNEWS.COM
10 JunSensitive Information Stolen in Sensata Ransomware AttackSensor manufacturer Sensata said a ransomware group had access to its network for more than a week and stole personal information. The post Sensitive Information Stolen in Sensata Ransomware Attack appeared first on SecurityWeek .SECURITYWEEK.COM
10 JunSensata Technologies says personal data stolen by ransomware gangsubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/sensata-technologies-says-personal-data-stolen-by-ransomware-gang/SH.ITJUST.WORKS
10 JunSentinelOne shares new details on China-linked breach attemptsubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/sentinelone-shares-new-details-on-china-linked-breach-attempt/SH.ITJUST.WORKS
10 JunSophos Emergency Incident Response is now availableThe first service combining the power of Sophos and Secureworks.SOPHOS.COM
10 JunOngoing cyberattack at US grocery distributor giant UNFI affecting customer ordersUnited Natural Foods said it is "diligently managing through the cyber incident" that sparked disruption outages.TECHCRUNCH.COM
10 JunAI is a data-breach time bomb, reveals new reportAI acts like Pac-Man—devouring sensitive data across clouds, apps, and copilots. Varonis analyzed 1,000 orgs and found 99% have exposed data AI can access, exposing them to data risks. [...]BLEEPINGCOMPUTER.COM
10 JunTexas Dept. of Transportation breached, 300k crash records stolenThe Texas Department of Transportation (TxDOT) is warning that it suffered a data breach after a threat actor downloaded 300,000 crash records from its database. [...]BLEEPINGCOMPUTER.COM
10 JunTexas Dept. of Transportation breached, 300k crash records stolensubmitted by cm0002 to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/texas-dept-of-transportation-breached-300k-crash-records-stolen/INFOSEC.PUB
10 JunWhole Foods tells staff cyberattack at its primary distributor UNFI will affect product availabilityThe retail giant described the food shortages as "temporary supply challenges" following the cyberattack at its primary distributor, UNFI.TECHCRUNCH.COM
🕵️ THREAT INTELLIGENCE 27[−]
10 JunISC Stormcast For Tuesday, June 10th, 2025 https://isc.sans.edu/podcastdetail/9486, (Tue, Jun 10th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
10 JunChinese spy crew appears to be preparing for conflict by backdooring more than 70 critical organizations worldwidesubmitted by Hotznplotzn to cybersecurity 2 points | 0 comments https://www.theregister.com/2025/06/09/china_malware_flip_switch_sentinelone cross-posted from: lemmy.sdf.org/post/36375283 Archived Here is the technical report by SentinelOne . An IT services company, a European me…INFOSEC.PUB
10 JunChinese spy crew appears to be preparing for conflict by backdooring more than 70 critical organizations worldwidesubmitted by Hotznplotzn to cybersecurity 3 points | 0 comments https://www.theregister.com/2025/06/09/china_malware_flip_switch_sentinelone cross-posted from: lemmy.sdf.org/post/36375283 Archived Here is the technical report by SentinelOne . An IT services company, a European me…SH.ITJUST.WORKS
10 JunVulnerabilities Exposed Phone Number of Any Google UserGoogle has awarded $5,000 to a researcher who found security holes that enabled brute-forcing the phone number of any user. The post Vulnerabilities Exposed Phone Number of Any Google User appeared first on SecurityWeek .SECURITYWEEK.COM
10 JunMalware Deployment Campaigns: ‘Librarian Ghouls’ APT Group Targets OrganizationsThe Advanced Persistent Threat (APT) group known as “Librarian Ghouls,” also tracked as “Rare Werewolf” and “Rezet,” has been actively targeting organizations across Russia and the Commonwealth of Independent States (CIS) with highly sophisticated malware deployment c…GBHACKERS.COM
10 JunHidden Backdoors in npm Packages Let Attackers Wipe Entire Systemssubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/backdoors-npm-packages-attackers-wipe-systems/SH.ITJUST.WORKS
10 JunCYFIRMA INDUSTRY REPORT – ENERGY & UTILITIES - CYFIRMAsubmitted by kid to cybersecurity 2 points | 0 comments https://www.cyfirma.com/research/cyfirma-industry-report-energy-utilities-3/SH.ITJUST.WORKS
10 JunNearly 300,000 crash records stolen from Texas transportation department | The Record from Recorded Future Newssubmitted by kid to cybersecurity 2 points | 0 comments https://therecord.media/car-crash-records-stolen-texas-transportation-departmentSH.ITJUST.WORKS
10 JunResecurity | APT 41: Threat Intelligence Report and Malware Analysissubmitted by kid to cybersecurity 1 points | 0 comments https://www.resecurity.com/blog/article/apt-41-threat-intelligence-report-and-malware-analysisSH.ITJUST.WORKS
10 JunNew Zealand Government Mandates DMARC Under New Secure Email Framework - Security Boulevardsubmitted by kid to cybersecurity 1 points | 0 comments https://securityboulevard.com/2025/06/new-zealand-government-mandates-dmarc-under-new-secure-email-framework/SH.ITJUST.WORKS
10 JunPayU Plugin Flaw Allows Account Takeover on 5000 WordPress Sites - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/payu-plugin-flaw-wordpress-account/SH.ITJUST.WORKS
10 JunSwimlane Raises $45 Million for Security Automation PlatformSwimlane has raised $45 million in a growth funding round to fuel its global channel expansion and product innovation. The post Swimlane Raises $45 Million for Security Automation Platform appeared first on SecurityWeek .SECURITYWEEK.COM
10 JunThe AI Fix #54: Will AI collapse under its own garbage, and AI charity “Hunger Games”In episode 54 of The AI Fix, Graham saves humanity with a CAPTCHA, Mark wonders whether AI can suffer, ChatGPT throws shade at Abba's Björn Ulvaeus, an AI called Jack ask if you want fries with that, an artist invents AI bird poop, and Eric Schmidt says we should unplug AI when i…GRAHAMCLULEY.COM
10 JunKnowBe4 Wins Big with 2025 TrustRadius Top Rated AwardsWe’re proud to share that KnowBe4 has once again been recognized as a leader in cybersecurity, receiving multiple 2025 TrustRadius Top Rated Awards across our product suite.KNOWBE4.COM
10 JunFIN6 hackers pose as job seekers to backdoor recruiters’ devicessubmitted by cm0002 to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/fin6-hackers-pose-as-job-seekers-to-backdoor-recruiters-devices/INFOSEC.PUB
10 JunNorth Korean APT Hackers Target Users on Social Media to Spread MalwareThe Genians Security Center (GSC) has uncovered a highly sophisticated Advanced Persistent Threat (APT) campaign orchestrated by the North Korean state-sponsored hacking group Kimsuky. Active between March and April 2025, this campaign, identified as part of the notorious ‘…GBHACKERS.COM
10 JunBeware of Instagram Growth Tools Stealing Login Credentials and Sending Them to AttackersA discovery by Socket’s Threat Research Team has unveiled a malicious Python package named imad213, masquerading as an Instagram growth tool. Created by a threat actor identified as im_ad__213 with the associated email madmadimado59@gmail[.]com, this malware cunningly trick…GBHACKERS.COM
10 JunFIN6 Uses AWS-Hosted Fake Resumes on LinkedIn to Deliver More_eggs MalwareThe financially motivated threat actor known as FIN6 has been observed leveraging fake resumes hosted on Amazon Web Services (AWS) infrastructure to deliver a malware family called More_eggs. "By posing as job seekers and initiating conversations through platforms like LinkedIn a…THEHACKERNEWS.COM
10 JunMassive Heroku outage impacts web platforms worldwidesubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/technology/massive-heroku-outage-impacts-web-platforms-worldwide/SH.ITJUST.WORKS
10 JunRare Werewolf APT Uses Legitimate Software in Attacks on Hundreds of Russian Enterprisessubmitted by kid to cybersecurity 3 points | 0 comments https://thehackernews.com/2025/06/rare-werewolf-apt-uses-legitimate.htmlSH.ITJUST.WORKS
10 JunRust-based Myth Stealer Malware Spread via Fake Gaming Sites Targets Chrome, Firefox Userssubmitted by kid to cybersecurity 2 points | 0 comments https://thehackernews.com/2025/06/rust-based-myth-stealer-malware-spread.htmlSH.ITJUST.WORKS
10 JunESET Details on How to Manage Your Digital FootprintESET, a leading cybersecurity firm, has shed light on the intricate nature of digital footprints the data trails left by users during online interactions. As the internet becomes an integral part of daily life, every click, post, and transaction contributes to a vast repository o…GBHACKERS.COM
10 JunNew Report Highlights the Internet as the Primary Threat to Industrial Automation SystemsA recent report by Kaspersky ICS CERT, released on June 10, 2025, sheds light on the persistent and evolving cyberthreats targeting industrial automation systems (IAS) worldwide during the first quarter of 2025. The comprehensive analysis, based on data from Kaspersky Security Ne…GBHACKERS.COM
10 JunFIN6 hackers pose as job seekers to backdoor recruiters’ devicessubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/fin6-hackers-pose-as-job-seekers-to-backdoor-recruiters-devices/SH.ITJUST.WORKS
10 JunNew Secure Boot flaw lets attackers install bootkit malware, patch nowsubmitted by cm0002 to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/new-secure-boot-flaw-lets-attackers-install-bootkit-malware-patch-now/INFOSEC.PUB
10 JunVixen Panda, NPM, Roundcube, IoT, 4Chan, Josh Marpet, and more... - SWN #484Vixen Panda, NPM, Roundcube, IoT, 4Chan, Josh Marpet, and more on the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-484YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 2[−]
10 JunRust-based Myth Stealer Malware Spread via Fake Gaming Sites Targets Chrome, Firefox UsersCybersecurity researchers have shed light on a previously undocumented Rust-based information stealer called Myth Stealer that's being propagated via fraudulent gaming websites. "Upon execution, the malware displays a fake window to appear legitimate while simultaneously decrypti…THEHACKERNEWS.COM
10 JunFIN6 hackers pose as job seekers to backdoor recruiters’ devicesIn a twist on typical hiring-related social engineering attacks, the FIN6 hacking group impersonates job seekers to target recruiters, using convincing resumes and phishing sites to deliver malware. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 11[−]
10 JunFive plead guilty to laundering $36 million stolen in investment scamsFive men from China, the United States, and Turkey pleaded guilty to their involvement in an international crime ring and laundering nearly $37 million stolen from U.S. victims in cryptocurrency investment scams carried out from Cambodia. [...]BLEEPINGCOMPUTER.COM
10 JunThe Hidden Threat in Your Stack: Why Non-Human Identity Management is the Next Cybersecurity FrontierModern enterprise networks are highly complex environments that rely on hundreds of apps and infrastructure services. These systems need to interact securely and efficiently without constant human oversight, which is where non-human identities (NHIs) come in. NHIs — including app…THEHACKERNEWS.COM
10 JunOpenAI working to fix ChatGPT outage affecting users worldwideOpenAI is working to fix an ongoing outage impacting ChatGPT users worldwide and preventing them from accessing the chatbot on the web or via mobile and desktop apps. [...]BLEEPINGCOMPUTER.COM
10 JunMassive Heroku outage impacts web platforms worldwideHeroku is suffering a widespread outage that has lasted over six hours, preventing developers from logging into the platform and breaking website functionality. [...]BLEEPINGCOMPUTER.COM
10 JunWhy This Ethical Hacker Still Finds Web Hacking AddictiveWhy does an ethical hacker still find web hacking so addictive after 8 years? In this short, cybersecurity expert James Kettle reveals why the endless possibilities of web attacks keep him hooked — from mastering new techniques to uncovering hidden vulnerabilities. The world of e…YOUTUBE.COM
10 JunGetting started with WiregoAn introduction to Wirego, a tool for Wireshark plugin developmentQUARKSLAB.COM
10 JunMicrosoft Outlook to block more risky attachments used in attacksMicrosoft announced it will expand the list of blocked attachments in Outlook Web and the new Outlook for Windows starting next month. [...]BLEEPINGCOMPUTER.COM
10 JunWindows 11 KB5060842 and KB5060999 cumulative updates releasedMicrosoft has released Windows 11 KB5060842 and KB5060999 cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues, including 66 flaws. [...]BLEEPINGCOMPUTER.COM
10 JunWindows 10 KB5060533 cumulative update released with 7 changes, fixesMicrosoft has released the KB5060533 cumulative update for Windows 10 22H2 and Windows 10 21H2, with seven fixes or changes, including bringing seconds back to the time shown in the Calendar flyout. [...]BLEEPINGCOMPUTER.COM
10 JunConnectWise rotating code signing certificates over security concernsConnectWise is warning customers that it is rotating the digital code signing certificates used to sign ScreenConnect, ConnectWise Automate, and ConnectWise RMM executables over security concerns. [...]BLEEPINGCOMPUTER.COM
10 JunOfcom investigates 4chan for not protecting users from illegal contentIf Ofcom finds 4chan at fault, it can impose fines of up to £18 million or 10% of qualifying worldwide revenue (whichever is greater). It could even require ISPs to block access to 4chan in the UK.GRAHAMCLULEY.COM