Tag: vulnerability
-
The Register: Samsung admits Galaxy devices can leak passwords through clipboard wormhole
Source URL: https://www.theregister.com/2025/04/28/security_news_in_brief/ Source: The Register Title: Samsung admits Galaxy devices can leak passwords through clipboard wormhole Feedly Summary: PLUS: Microsoft fixes messes China used to attack it; Mitre adds ESXi advice; Employee-tracking screenshots leak; and more! Infosec in brief Samsung has warned that some of its Galaxy devices store passwords in plaintext.… AI Summary…
-
The Register: More Ivanti attacks may be on horizon, say experts who are seeing 9x surge in endpoint scans
Source URL: https://www.theregister.com/2025/04/25/more_ivanti_attacks_may_be/ Source: The Register Title: More Ivanti attacks may be on horizon, say experts who are seeing 9x surge in endpoint scans Feedly Summary: GreyNoise says it is the kind of activity that typically precedes new vulnerability disclosures Ivanti VPN users should stay alert as IP scanning for the vendor’s Connect Secure and…
-
The Register: Emergency patch for potential SAP zero-day that could grant full system control
Source URL: https://www.theregister.com/2025/04/25/sap_netweaver_patch/ Source: The Register Title: Emergency patch for potential SAP zero-day that could grant full system control Feedly Summary: German software giant paywalls details, but experts piece together the clues SAP’s latest out-of-band patch is for a perfect 10/10 bug in NetWeaver that experts suspect could have already been exploited as a zero-day.……
-
Slashdot: Hackers Can Now Bypass Linux Security Thanks To Terrifying New Curing Rootkit
Source URL: https://linux.slashdot.org/story/25/04/24/142249/hackers-can-now-bypass-linux-security-thanks-to-terrifying-new-curing-rootkit?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Hackers Can Now Bypass Linux Security Thanks To Terrifying New Curing Rootkit Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a significant vulnerability uncovered by ARMO regarding Linux security through the use of a rootkit called “Curing.” This rootkit leverages the io_uring feature in the Linux…
-
Anchore: From War Room to Workflow: How Anchore Transforms CVE Incident Response
Source URL: https://anchore.com/blog/from-war-room-to-workflow-how-anchore-transforms-cve-incident-response/ Source: Anchore Title: From War Room to Workflow: How Anchore Transforms CVE Incident Response Feedly Summary: When CVE-2025-1974 (#IngressNightmare) was disclosed, incident response teams had hours—at most—before exploits appeared in the wild. Imagine two companies responding: Which camp would you rather be in when the next critical CVE drops? Most of us…
-
The Register: Today’s LLMs craft exploits from patches at lightning speed
Source URL: https://www.theregister.com/2025/04/21/ai_models_can_generate_exploit/ Source: The Register Title: Today’s LLMs craft exploits from patches at lightning speed Feedly Summary: Erlang? Er, man, no problem. ChatGPT, Claude to go from flaw disclosure to actual attack code in hours The time from vulnerability disclosure to proof-of-concept (PoC) exploit code can now be as short as a few hours,…
-
Slashdot: As Russia and China ‘Seed Chatbots With Lies’, Any Bad Actor Could Game AI the Same Way
Source URL: https://yro.slashdot.org/story/25/04/19/1531238/as-russia-and-china-seed-chatbots-with-lies-any-bad-actor-could-game-ai-the-same-way?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: As Russia and China ‘Seed Chatbots With Lies’, Any Bad Actor Could Game AI the Same Way Feedly Summary: AI Summary and Description: Yes Summary: The text discusses how Russia is automating the spread of misinformation to manipulate AI chatbots, potentially serving as a model for other malicious actors.…