Tag: patching
-
Unit 42: Threat Insights: Active Exploitation of Cisco ASA Zero Days
Source URL: https://unit42.paloaltonetworks.com/zero-day-vulnerabilities-affect-cisco-software/ Source: Unit 42 Title: Threat Insights: Active Exploitation of Cisco ASA Zero Days Feedly Summary: CVE-2025-20333, CVE-2025-20362 and CVE-2025-20363 affect multiple Cisco products, and are being exploited by a threat actor linked to the ArcaneDoor campaign. The post Threat Insights: Active Exploitation of Cisco ASA Zero Days appeared first on Unit 42.…
-
The Register: Prompt injection – and a $5 domain – trick Salesforce Agentforce into leaking sales
Source URL: https://www.theregister.com/2025/09/26/salesforce_agentforce_forceleak_attack/ Source: The Register Title: Prompt injection – and a $5 domain – trick Salesforce Agentforce into leaking sales Feedly Summary: More fun with AI agents and their security holes A now-fixed flaw in Salesforce’s Agentforce could have allowed external attackers to steal sensitive customer data via prompt injection, according to security researchers…
-
The Register: UK and US security agencies order urgent fixes as Cisco firewall bugs exploited in wild
Source URL: https://www.theregister.com/2025/09/26/cisco_firewall_flaws/ Source: The Register Title: UK and US security agencies order urgent fixes as Cisco firewall bugs exploited in wild Feedly Summary: CISA gives feds 24 hours to patch, NCSC urges rapid action as flaws linked to ArcaneDoor spies Cybersecurity agencies on both sides of the Atlantic are sounding the alarm over Cisco…
-
Microsoft Security Blog: Retail at risk: How one alert uncovered a persistent cyberthreat
Source URL: https://www.microsoft.com/en-us/security/blog/2025/09/24/retail-at-risk-how-one-alert-uncovered-a-persistent-cyberthreat/ Source: Microsoft Security Blog Title: Retail at risk: How one alert uncovered a persistent cyberthreat Feedly Summary: In the latest edition of our Cyberattack Series, we dive into real-world cases targeting retail organizations. With 60% of retail companies reporting operational disruptions from cyberattacks and 43% experiencing breaches in the past year, the stakes…
-
Slashdot: Google Shifts Android Security Updates To Risk-Based Triage System
Source URL: https://tech.slashdot.org/story/25/09/15/1444225/google-shifts-android-security-updates-to-risk-based-triage-system?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Google Shifts Android Security Updates To Risk-Based Triage System Feedly Summary: AI Summary and Description: Yes Summary: Google has initiated a significant alteration in its Android security update strategy by introducing a “Risk-Based Update System.” This system prioritizes high-risk vulnerabilities for immediate attention while deferring routine fixes, which may…
-
The Register: Spectre haunts CPUs again: VMSCAPE vulnerability leaks cloud secrets
Source URL: https://www.theregister.com/2025/09/11/vmscape_spectre_vulnerability/ Source: The Register Title: Spectre haunts CPUs again: VMSCAPE vulnerability leaks cloud secrets Feedly Summary: AMD Zen hardware and Intel Coffee Lake affected If you thought the world was done with side-channel CPU attacks, think again. ETH Zurich has identified yet another Spectre-based transient execution vulnerability that affects AMD Zen CPUs and…