Tag: Vulnerability Exploitation
-
Hacker News: Oracle customers confirm data stolen in alleged cloud breach is valid
Source URL: https://www.bleepingcomputer.com/news/security/oracle-customers-confirm-data-stolen-in-alleged-cloud-breach-is-valid/ Source: Hacker News Title: Oracle customers confirm data stolen in alleged cloud breach is valid Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a potential data breach involving Oracle Cloud servers where a threat actor claims to have stolen account data for 6 million users. Oracle denies the…
-
The Register: Oracle Cloud says it’s not true someone broke into its login servers and stole data
Source URL: https://www.theregister.com/2025/03/23/oracle_cloud_customers_keys_credentials/ Source: The Register Title: Oracle Cloud says it’s not true someone broke into its login servers and stole data Feedly Summary: Despite evidence to the contrary as alleged pilfered info goes on sale Oracle has straight up denied claims by a miscreant that its public cloud offering has been compromised and information…
-
Hacker News: The Insecurity of Telecom Stacks in the Wake of Salt Typhoon
Source URL: https://soatok.blog/2025/03/12/on-the-insecurity-of-telecom-stacks-in-the-wake-of-salt-typhoon/ Source: Hacker News Title: The Insecurity of Telecom Stacks in the Wake of Salt Typhoon Feedly Summary: Comments AI Summary and Description: Yes Summary: The text highlights a security vulnerability discovered in FreeSWITCH, an open-source telecom software, which could allow for remote code execution due to improper handling of HTTP requests. The…
-
Slashdot: Serbian Student’s Android Phone Compromised By Exploit From Cellebrite
Source URL: https://it.slashdot.org/story/25/03/01/019202/serbian-students-android-phone-compromised-by-exploit-from-cellebrite?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Serbian Student’s Android Phone Compromised By Exploit From Cellebrite Feedly Summary: AI Summary and Description: Yes Summary: The report illustrates a concerning case of a zero-day exploit utilized by a surveillance vendor against a student critic of the Serbian government, highlighting the ongoing threats to information security in civil…
-
Alerts: CISA and Partners Release Advisory on Ghost (Cring) Ransomware
Source URL: https://www.cisa.gov/news-events/alerts/2025/02/19/cisa-and-partners-release-advisory-ghost-cring-ransomware Source: Alerts Title: CISA and Partners Release Advisory on Ghost (Cring) Ransomware Feedly Summary: Today, CISA—in partnership with the Federal Bureau of Investigation (FBI) and Multi-State Information Sharing and Analysis Center (MS-ISAC)—released a joint Cybersecurity Advisory, #StopRansomware: Ghost (Cring) Ransomware. This advisory provides network defenders with indicators of compromise (IOCs), tactics, techniques,…
-
The Register: Critical PostgreSQL bug tied to zero-day attack on US Treasury
Source URL: https://www.theregister.com/2025/02/14/postgresql_bug_treasury/ Source: The Register Title: Critical PostgreSQL bug tied to zero-day attack on US Treasury Feedly Summary: High-complexity bug unearthed by infoseccers, as Rapid7 probes exploit further A high-severity SQL injection bug in the PostgreSQL interactive tool was exploited alongside the zero-day used to break into the US Treasury in December, researchers say.……