Tag: Patch

Source URL: https://www.theregister.com/2025/03/28/google_kaspersky_mozilla/ Source: The Register Title: After Chrome patches zero-day used to target Russians, Firefox splats similar bug Feedly Summary: Single click on a phishing link in Google browser blew up sandbox on Windows Google pushed out an emergency patch for Chrome on Windows this week to stop attackers exploiting a sandbox-breaking zero-day vulnerability,…

The Register: CrushFTP CEO’s feisty response to VulnCheck’s CVE for critical make-me-admin bug

Mar 27, 2025

—

by

Source URL: https://www.theregister.com/2025/03/27/crushftp_cve/ Source: The Register Title: CrushFTP CEO’s feisty response to VulnCheck’s CVE for critical make-me-admin bug Feedly Summary: Screenshot shows company head unhappy, claiming ‘real CVE is pending’ CrushFTP’s CEO is not happy with VulnCheck after the CVE numbering authority (CNA) released an unofficial ID for the critical vulnerability in its file transfer…

The Register: Ransomwared NHS software supplier nabs £3M discount from ICO for good behavior

Mar 27, 2025

—

by

Source URL: https://www.theregister.com/2025/03/27/ransomwared_nhs_software_supplier_nabs/ Source: The Register Title: Ransomwared NHS software supplier nabs £3M discount from ICO for good behavior Feedly Summary: Data stolen included checklist for medics on how to get into vulnerable people’s homes The UK’s data protection watchdog is dishing out a £3.07 million ($3.95 million) fine to Advanced Computer Software Group, whose…

Hacker News: Oracle customers confirm data stolen in alleged cloud breach is valid

—

by

Source URL: https://www.bleepingcomputer.com/news/security/oracle-customers-confirm-data-stolen-in-alleged-cloud-breach-is-valid/ Source: Hacker News Title: Oracle customers confirm data stolen in alleged cloud breach is valid Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a potential data breach involving Oracle Cloud servers where a threat actor claims to have stolen account data for 6 million users. Oracle denies the…

Hacker News: Malware found on NPM infecting local package with reverse shell

—

by

Source URL: https://www.reversinglabs.com/blog/malicious-npm-patch-delivers-reverse-shell Source: Hacker News Title: Malware found on NPM infecting local package with reverse shell Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the emergence of sophisticated malware on the npm package repository, specifically through malicious packages like ethers-provider2 and ethers-providerz, which exhibit advanced evasive techniques to compromise legitimate…

Hacker News: Heap-overflowing Llama.cpp to RCE

—

by

Source URL: https://retr0.blog/blog/llama-rpc-rce Source: Hacker News Title: Heap-overflowing Llama.cpp to RCE Feedly Summary: Comments AI Summary and Description: Yes Summary: The text provides a detailed, technical exploration of exploiting a remote code execution vulnerability within the Llama.cpp framework, specifically focusing on a heap-overflow issue and its associated mitigations. It offers insights into the unique memory…

Slashdot: Google Patches Chrome Sandbox Escape Zero-Day Caught By Kaspersky

—

by

Source URL: https://slashdot.org/story/25/03/26/0143210/google-patches-chrome-sandbox-escape-zero-day-caught-by-kaspersky?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Google Patches Chrome Sandbox Escape Zero-Day Caught By Kaspersky Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a recently patched sandbox escape vulnerability in Google Chrome, highlighting its implications in a targeted cyberespionage campaign. It underscores the importance of timely updates and security measures against such…

Hacker News: There are perhaps 10k reasons to doubt Oracle Cloud’s security breach denial

Mar 25, 2025

—

by

Source URL: https://www.theregister.com/2025/03/25/oracle_breach_update/ Source: Hacker News Title: There are perhaps 10k reasons to doubt Oracle Cloud’s security breach denial Feedly Summary: Comments AI Summary and Description: Yes Summary: The text describes a dispute regarding Oracle Cloud’s denial of a security breach after an infosec researcher claims that sensitive data, including customer security keys and credentials,…

The Register: There are perhaps 10,000 reasons to doubt Oracle Cloud’s security breach denial

Mar 25, 2025

—

by