62Articles
6Categories
2025-09-12Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 13[−]
12 SepRansomware gang going after improperly patched SonicWall firewallsVulnerable SonicWall firewalls that should have been patched a year ago for an access control vulnerability are being hacked by a ransomware gang, Australia’s cybersecurity authorities warned this week. The Australian Cyber Security Centre is seeing an increase in active exploita…CSOONLINE.COM
12 SepNew VMScape Spectre-BTI Attack Targets Isolation Flaws in AMD and Intel CPUsCybersecurity researchers at ETH Zurich have disclosed a critical new Spectre-based attack called VMSCAPE that exploits incomplete branch predictor isolation in virtualized cloud environments. The attack, tracked as CVE-2025-40300, affects multiple generations of A…GBHACKERS.COM
12 SepDaikin Security Gateway Vulnerability Allows Unauthorized System AccessA critical security flaw in Daikin Security Gateway systems has been discovered that could enable attackers to bypass authentication and gain unauthorized access to industrial control systems. The vulnerability, tracked as CVE-2025-10127, affects organizations worldwide that…GBHACKERS.COM
12 SepAxios Vulnerability Enables Attackers to Crash Node.js Applications via Data Handle AbuseA critical security vulnerability has been discovered in the popular Axios HTTP client library that allows attackers to crash Node.js applications through malicious data URL handling. The flaw, tracked as CVE-2025-58754, affects all versions of Axios before 1.11.0 and has been as…GBHACKERS.COM
12 SepCISA: CVE Program to Focus on Vulnerability Data QualityCISA says it is time for the CVE Program to focus on improving trust, responsiveness, and the caliber of vulnerability data. The post CISA: CVE Program to Focus on Vulnerability Data Quality appeared first on SecurityWeek .SECURITYWEEK.COM
12 SepNew HybridPetya Ransomware Bypasses UEFI Secure Boot With CVE-2024-7344 ExploitCybersecurity researchers have discovered a new ransomware strain dubbed HybridPetya that resembles the notorious Petya/NotPetya malware, while also incorporating the ability to bypass the Secure Boot mechanism in Unified Extensible Firmware Interface (UEFI) systems using a now-p…THEHACKERNEWS.COM
12 Sep KEVCritical CVE-2025-5086 in DELMIA Apriso Actively Exploited, CISA Issues WarningThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical security flaw impacting Dassault Systèmes DELMIA Apriso Manufacturing Operations Management (MOM) software to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of acti…THEHACKERNEWS.COM
12 SepMicrosoft Windows Defender Firewall Vulnerabilities Allow Privilege EscalationMicrosoft has released security advisories for four newly discovered vulnerabilities in its Windows Defender Firewall Service that could enable attackers to elevate privileges on affected Windows systems. The flaws, tracked as CVE-2025-53808, CVE-2025-54104, CVE-2025-54109, and C…GBHACKERS.COM
12 SepHybridPetya Exploits UEFI Vulnerability to Bypass Secure Boot on Legacy SystemsESET Research has uncovered a sophisticated new ransomware variant called HybridPetya, discovered on the VirusTotal sample sharing platform. This malware represents a dangerous evolution of the infamous Petya/NotPetya ransomware family, incorporating advanced capabilities to comp…GBHACKERS.COM
12 Sep KEVVulnerability Report - August 2025submitted by cm0002 to cybersecurity 1 points | 0 comments https://discourse.ossbase.org/t/vulnerability-report-august-2025/715 Introduction This vulnerability report has been generated using data aggregated on Vulnerability-Lookup , with contributions from the platform’s communi…INFOSEC.PUB
12 SepSamsung Fixes Critical Zero-Day CVE-2025-21043 Exploited in Android AttacksSamsung has released its monthly security updates for Android, including a fix for a security vulnerability that it said has been exploited in zero-day attacks. The vulnerability, CVE-2025-21043 (CVSS score: 8.8), concerns an out-of-bounds write that could result in arbitrary cod…THEHACKERNEWS.COM
12 SepVMScape Spectre BTI attack breaks VM isolation on AMD and Intel CPUsResearchers have demonstrated a Spectre-like CPU branch target injection attack that allows malicious virtual machine users to leak sensitive information from host hypervisors such as KVM/QEMU on Linux. The new attack, dubbed VMScape, exploits the speculative execution feature of…CSOONLINE.COM
12 SepIntroducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypassUEFI copycat of Petya/NotPetya exploiting CVE-2024-7344 discovered on VirusTotalWELIVESECURITY.COM
⚠️ VULNERABILITY DISCLOSURE 21[−]
12 SepCursor AI Code Editor Flaw Enables Silent Code Execution via Malicious RepositoriesA security weakness has been disclosed in the artificial intelligence (AI)-powered code editor Cursor that could trigger code execution when a maliciously crafted repository is opened using the program. The issue stems from the fact that an out-of-the-box security setting is disa…THEHACKERNEWS.COM
12 SepMicrosoft Patches Zero Day And MoreCybersecurity Today: Microsoft Patches, Canadian Data Breach, NVIDIA's New Tool, and a Senator's Call for Investigation In this episode of Cybersecurity Today, host Jim Love discusses Microsoft's September patch update addressing 81 security flaws, including two zero-day vulnerab…CYBERSECURITYTODAY.LIBSYN.COM
12 SepNew K2 Think AI Model Falls to Jailbreak in Record TimeA groundbreaking vulnerability has emerged in the newly released K2 Think AI model from UAE’s Mohamed bin Zayed University of Artificial Intelligence (MBZUAI) in collaboration with G42. Security researchers have successfully jailbroken the advanced reasoning system within h…GBHACKERS.COM
12 SepApple Warns of Mercenary Spyware Attacks Targeting User DevicesApple has issued urgent warnings about sophisticated spyware attacks targeting specific users worldwide, including journalists, activists, politicians, and diplomats. Mercenary spyware attacks differ significantly from regular cybercriminal activity. These attacks cost millions o…GBHACKERS.COM
12 Sep12 digital forensics certifications to accelerate your cyber careerDigital forensics is a critical function for any enterprise . After a cyberattack, forensic professionals investigate how the attacker gained access, what systems were affected, and what actions were taken. This work is both reflective and prescriptive: By uncovering the path of …CSOONLINE.COM
12 SepLAPSUS$ Hunters 4.0 Announce Permanent ShutdownIn a startling development on September 8, the Telegram channel “scattered LAPSUS$ hunters 4.0” declared its intention to “go dark” after taunting law enforcement for repeated missteps. With an audacious message aimed squarely at the FBI and French authorities, the group claimed …GBHACKERS.COM
12 SepPayment System Vendor Took Year+ to Patch Infinite Card Top-Up Hack: Security FirmKioSoft was notified about a serious NFC card vulnerability in 2023 and only recently claimed to have released a patch. The post Payment System Vendor Took Year+ to Patch Infinite Card Top-Up Hack: Security Firm appeared first on SecurityWeek .SECURITYWEEK.COM
12 SepSidewinder Hackers Exploit LNK Files to Deploy Malicious ScriptsIn a striking evolution of its tactics, the Sidewinder advanced persistent threat (APT) group—also known as APT-C-24 or “Rattlesnake”—has adopted a novel delivery mechanism leveraging Windows shortcut (LNK) files to orchestrate complex, multi-stage intrusions across South Asia. A…GBHACKERS.COM
12 Sep KEVSamsung patches actively exploited zero-day reported by WhatsAppSamsung has patched a remote code execution vulnerability that was exploited in zero-day attacks targeting its Android devices. [...]BLEEPINGCOMPUTER.COM
12 SepVMScape: Academics Break Cloud Isolation With New Spectre AttackExploiting incomplete speculative execution attack mitigations extended to the branch predictor state, VMScape leaks arbitrary memory. The post VMScape: Academics Break Cloud Isolation With New Spectre Attack appeared first on SecurityWeek .SECURITYWEEK.COM
12 SepWhy domain-based attacks will continue to wreak havocAmong the numerous cyber threats that enterprises must contend with, domain-based attacks hold a prominent position. These are attacks that target or exploit domain names or DNS infrastructure. They’re hardly new, but the threat is growing and mutating rapidly. One study found th…CSOONLINE.COM
12 SepNew Malvertising Campaign Exploits GitHub Repositories to Distribute MalwareA sophisticated malvertising campaign has been uncovered targeting unsuspecting users through “dangling commits” in a legitimate GitHub repository. Attackers are injecting promotional content for a counterfeit GitHub Desktop installer into popular development and open-source proj…GBHACKERS.COM
12 SepStealthy AsyncRAT flees the disk for a fileless infectionSecurity researchers have discovered an open-source remote access trojan, AsyncRAT, being delivered through a multi-stage, in-memory loader as adversaries move to fileless techniques. According to LevelBlue Labs’ findings, attackers gained initial foothold through a compromised S…CSOONLINE.COM
12 SepDELMIA Factory Software Vulnerability Exploited in AttacksA deserialization of untrusted data in the MOM software allows attackers to achieve remote code execution. The post DELMIA Factory Software Vulnerability Exploited in Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
12 Sep KEVCISA warns of actively exploited Dassault RCE vulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of hackers exploiting a critical remote code execution flaw in DELMIA Apriso, a manufacturing operations management (MOM) and execution (MES) solution from French company Dassault Systèmes. [...]BLEEPINGCOMPUTER.COM
12 SepThe Hidden Danger of Third-Party AI ModelsIn this short, Janet Worthington explains how third-party AI models are reshaping the software supply chain — and why cybersecurity teams are more concerned than ever. From open source libraries to APIs and hosted AI ecosystems, every new dependency adds hidden risks. This clip b…YOUTUBE.COM
12 SepGolang Binaries Are Fooling Your Scanner! 🔥In this short, Neil Carpenter explains how Golang binaries confuse vulnerability scanners and why this creates false positives that drive security teams crazy. The clip breaks down the hidden challenges of Go module scanning, static linking, and the noise that makes it unclear if…YOUTUBE.COM
12 SepHow Wesco cut through the noise and reimagined risk managementWesco is best known as a leading supply chain partner that provides electrical and communication systems and safety equipment to utilities, manufacturers, hospitals, and construction firms. But behind the scenes, the company faces the same challenge that all organizations grapple…CSOONLINE.COM
12 Sep2025 CSO Hall of Fame: Laura Deaner on AI, quantum threats, and cyber leadershipLaura Deaner, recently appointed chief information security officer at the Depository Trust & Clearing Corporation (DTCC), has spent more than 25 years at the forefront of enterprise cybersecurity. From leading information security programs as CISO at S&P Global and North…CSOONLINE.COM
12 SepVoidProxy phishing-as-a-service operation steals Microsoft, Google login credentialsIdentity and access management provider Okta has discovered what it says is a novel phishing-as-a-service (PhaaS) operation that, if victims fall for an infected email, may get around the user account protections from third-party single sign-on providers to steal Microsoft and Go…CSOONLINE.COM
12 SepA Cyberattack Victim Notification FrameworkInteresting analysis : When cyber incidents occur, victims should be notified in a timely manner so they have the opportunity to assess and remediate any harm. However, providing notifications has proven a challenge across industry. When making notifications, companies often do n…SCHNEIER.COM
📢 SECURITY ADVISORIES 2[−]
12 SepSo rechtfertigen Sie Ihre Security-InvestitionenLesen Sie, welche Aspekte entscheidend sind, um die Investitionen in die Cybersicherheit im Unternehmen zu rechtfertigen. Miha Creative – shutterstock.com In modernen Unternehmensumgebungen werden Investitionen in Sicherheitstechnologien nicht mehr nur anhand ihres technischen Re…CSOONLINE.COM
🔥 INCIDENT REPORTING 8[−]
12 SepFünf KI-Use-Cases für CISOsRob Hyrons / Shutterstock Security-Verantwortliche haben zwei Hauptaufgaben, wenn es um KI geht: Sie sollen zum einen sicherstellen, dass die Technologie möglichst sicher im Unternehmen eingeführt und angewendet wird. Zum anderen gilt es, Wege zu finden, wie KI den Security-Betri…CSOONLINE.COM
12 SepCornwell Quality Tools Suffers Data Breach, 100,000 User Records ExposedCornwell Quality Tools, a leading automotive and industrial tool supplier, has confirmed a significant data breach that compromised the personal information of 103,782 individuals. The cybersecurity incident occurred on December 12, 2024, when unauthorized attackers gained access…GBHACKERS.COM
12 SepButerat Backdoor Campaigns Targeting Enterprise Endpoint ControlBackdoor malware is a covert type of malicious software designed to bypass standard authentication mechanisms and provide persistent, unauthorized access to compromised systems. Unlike conventional malware that prioritizes immediate damage or data theft, backdoors focus on stealt…GBHACKERS.COM
12 SepTop 10 Best Breach and Attack Simulation (BAS) Tools in 2025In 2025, the cybersecurity landscape is defined by its complexity and the speed of modern threats. Security teams are overwhelmed by a fragmented array of security controls and a lack of clear visibility into what’s actually working. Breach and Attack Simulation (BAS) platf…GBHACKERS.COM
12 SepThe first three things you’ll want during a cyberattackWhen cyberattacks hit, every second counts. Survival depends on three essentials: clarity to see what's happening, control to contain it, and a lifeline to recover fast. Learn from Acronis TRU how MSPs and IT teams can prepare now for the difference between recovery and catastrop…BLEEPINGCOMPUTER.COM
12 SepApple Warns French Users of Fourth Spyware Campaign in 2025, CERT-FR ConfirmsApple has notified users in France of a spyware campaign targeting their devices, according to the Computer Emergency Response Team of France (CERT-FR). The agency said the alerts were sent out on September 3, 2025, making it the fourth time this year that Apple has notified citi…THEHACKERNEWS.COM
12 SepNew HybridPetya ransomware can bypass UEFI Secure BootA recently discovered ransomware strain called HybridPetya can bypass the UEFI Secure Boot feature to install a malicious application on the EFI System Partition. [...]BLEEPINGCOMPUTER.COM
12 SepReport: AI-Powered Phishing Fuels Ransomware LossesAI-powered social engineering attacks are significantly more successful than traditional attacks, according to a new report from cyber risk management firm Resilience.KNOWBE4.COM
🕵️ THREAT INTELLIGENCE 14[−]
12 SepISC Stormcast For Friday, September 12th, 2025 https://isc.sans.edu/podcastdetail/9610, (Fri, Sep 12th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
12 SepMicrosoft Teams Launches Automatic Alerts for Malicious LinksMicrosoft is significantly enhancing security for its Teams platform by introducing automatic warning systems that alert users about malicious links in chat messages. This new protective feature represents a crucial advancement in safeguarding collaboration platforms from increas…GBHACKERS.COM
12 SepNew ToneShell Variant Uses Task Scheduler COM Service to Maintain PersistenceThe latest ToneShell variant introduces a notable advancement in its persistence strategy by leveraging the Windows Task Scheduler COM service. This lightweight backdoor, traditionally delivered through DLL sideloading techniques, now incorporates enhanced persistence mechanisms …GBHACKERS.COM
12 SepVirtualBox 7.2.2 Update Released with Fix for Guest GUI CrashesOracle has released VirtualBox 7.2.2, a critical maintenance update that addresses multiple GUI crashes and stability issues affecting users across Windows, Linux, and macOS platforms. Released on September 10, 2025, this update represents a significant improvement in the virtual…GBHACKERS.COM
12 SepMicrosoft to Deprecate VBScript in Windows, Urges Developers to Update ProjectsMicrosoft announced the phased deprecation of VBScript in Windows, significantly impacting VBA developers who rely on VBScript libraries for regular expressions and external script execution. The company outlined a comprehensive timeline and provided migration guidance to help de…GBHACKERS.COM
12 SepMalware Campaign Uses SVG Email Attachments to Deploy XWorm and Remcos RATRecent threat campaigns have revealed an evolving use of BAT-based loaders to deliver Remote Access Trojans (RATs), including XWorm and Remcos. These campaigns typically begin with a ZIP archive—often hosted on seemingly legitimate platforms such as ImgKit—designed to entice user…GBHACKERS.COM
12 SepF5 to Acquire CalypsoAI for $180 MillionF5 is buying CalypsoAI for its adaptive AI inference security solutions, which will be integrated into its Application Delivery and Security Platform. The post F5 to Acquire CalypsoAI for $180 Million appeared first on SecurityWeek .SECURITYWEEK.COM
12 SepNew Malware Abuses Azure Functions to Host Command and Control InfrastructureA malicious ISO image named Servicenow-BNM-Verify.iso was uploaded to VirusTotal from Malaysia with almost no detections. The image contains four files—two openly visible and two hidden. The visible files include a Windows shortcut, servicenow-bnm-verify.lnk, which launches PanGp…GBHACKERS.COM
12 SepApple Sends Fresh Wave of Spyware Notifications to French UsersApple this year sent at least four rounds of notifications to French users potentially targeted by commercial spyware. The post Apple Sends Fresh Wave of Spyware Notifications to French Users appeared first on SecurityWeek .SECURITYWEEK.COM
12 SepEvilAI: Leveraging AI to Steal Browser Data and Evade DetectionEvilAI, a new malware family tracked by Trend™ Research, has emerged in recent weeks disguised as legitimate AI-driven utilities. These trojans sport professional user interfaces, valid code signatures, and functional features, allowing them to slip past both corporate and person…GBHACKERS.COM
12 SepIn Other News: $900k for XSS Bugs, HybridPetya Malware, Burger King Censors ResearchNoteworthy stories that might have slipped under the radar: Huntress research raises concerns, Google paid out $1.6 million for cloud vulnerabilities, California web browser bill. The post In Other News: $900k for XSS Bugs, HybridPetya Malware, Burger King Censors Research appear…SECURITYWEEK.COM
12 SepFrom Gangbusters to Silence: The Krill Code Mystery 🕵️‍♂️When cybersecurity experts look back at Krill code, one mystery stands out: how critical vulnerabilities went from exploding in 2017 to nearly vanishing by 2019. This short dives into the surprising journey of bug fixes, maturity, and the shift in how advanced teams think about s…YOUTUBE.COM
12 SepAssessing the Quality of Dried SquidResearch : Nondestructive detection of multiple dried squid qualities by hyperspectral imaging combined with 1D-KAN-CNN Abstract: Given that dried squid is a highly regarded marine product in Oriental countries, the global food industry requires a swift and noninvasive quality as…SCHNEIER.COM
12 SepDiella, Texas, Movie Rip Offs, WAF, AdaptixC2, Nano11, and More... - SWN #511Diella, Texas, Movie Rip Offs, WAF, AdaptixC2, Nano11, and More, on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-511YOUTUBE.COM
📡 INFOSEC NEWS 4[−]
12 SepCloud-Native Security in 2025: Why Runtime Visibility Must Take Center StageThe security landscape for cloud-native applications is undergoing a profound transformation. Containers, Kubernetes, and serverless technologies are now the default for modern enterprises, accelerating delivery but also expanding the attack surface in ways traditional security m…THEHACKERNEWS.COM
12 SepMan gets over 4 years in prison for selling unreleased moviesA Tennessee court has sentenced a Memphis man who worked for a DVD and Blu-ray manufacturing and distribution company to 57 months in prison for stealing and selling digital copies of unreleased movies. [...]BLEEPINGCOMPUTER.COM
12 SepWindows 11 23H2 Home and Pro reach end of support in 60 daysMicrosoft has reminded customers today that devices running Home and Pro editions of Windows 11 23H2 will stop receiving updates in November. [...]BLEEPINGCOMPUTER.COM
12 SepBritish rail passengers urged to stay on guard after hack signals failurePassengers of the UK's state-owned London North Eastern Railway (LNER) have been warned to be vigilant after cybercriminals accessed traveller's contact details and some information about past journeys. Read more in my article on the Hot for Security blog.BITDEFENDER.COM