Tag: 2025
-
Slashdot: Redis Warns of Critical Flaw Impacting Thousands of Instances
Source URL: https://it.slashdot.org/story/25/10/06/222222/redis-warns-of-critical-flaw-impacting-thousands-of-instances?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Redis Warns of Critical Flaw Impacting Thousands of Instances Feedly Summary: AI Summary and Description: Yes Summary: The Redis security team has issued critical patches for a vulnerability (CVE-2025-49844) that could allow remote code execution on a significant number of instances. This vulnerability, stemming from a long-standing issue in…
-
The Register: Microsoft blames Medusa ransomware affiliates for GoAnywhere exploits while Fortra keeps head buried
Source URL: https://www.theregister.com/2025/10/06/microsoft_blames_medusa_ransomware_affiliates/ Source: The Register Title: Microsoft blames Medusa ransomware affiliates for GoAnywhere exploits while Fortra keeps head buried Feedly Summary: You can’t find anything bad if you don’t look, right? Medusa ransomware affiliates are among those exploiting a maximum-severity bug in Fortra’s GoAnywhere managed file transfer (MFT) product, according to Microsoft Threat Intelligence.……
-
Microsoft Security Blog: Investigating active exploitation of CVE-2025-10035 GoAnywhere Managed File Transfer vulnerability
Source URL: https://www.microsoft.com/en-us/security/blog/2025/10/06/investigating-active-exploitation-of-cve-2025-10035-goanywhere-managed-file-transfer-vulnerability/ Source: Microsoft Security Blog Title: Investigating active exploitation of CVE-2025-10035 GoAnywhere Managed File Transfer vulnerability Feedly Summary: Storm-1175, a financially motivated actor known for deploying Medusa ransomware and exploiting public-facing applications for initial access, was observed exploiting the deserialization vulnerability in GoAnywhere MFT’s License Servlet, tracked as CVE-2025-10035. We are publishing this…
-
The Register: Deloitte refunds Aussie gov after AI fabrications slip into $440K welfare report
Source URL: https://www.theregister.com/2025/10/06/deloitte_ai_report_australia/ Source: The Register Title: Deloitte refunds Aussie gov after AI fabrications slip into $440K welfare report Feedly Summary: Big Four consultancy billed Canberra top dollar, only for investigators to find bits written by a chatbot Deloitte has agreed to refund part of an Australian government contract after admitting it used generative AI…
-
AWS News Blog: AWS Weekly Roundup: Amazon Bedrock, AWS Outposts, Amazon ECS Managed Instances, AWS Builder ID, and more (October 6, 2025)
Source URL: https://aws.amazon.com/blogs/aws/aws-weekly-roundup-amazon-bedrock-aws-outposts-amazon-ecs-managed-instances-aws-builder-id-and-more-october-6-2025/ Source: AWS News Blog Title: AWS Weekly Roundup: Amazon Bedrock, AWS Outposts, Amazon ECS Managed Instances, AWS Builder ID, and more (October 6, 2025) Feedly Summary: Last week, Anthropic’s Claude Sonnet 4.5—the world’s best coding model according to SWE-Bench – became available in Amazon Q command line interface (CLI) and Kiro. I’m…