A critical vulnerability in Ubuntu’s Linux kernel has been exposed, allowing local attackers to escalate privileges and potentially gain root access on affected systems. Disclosed at TyphoonPWN 2025, the flaw stems from a reference count imbalance in the af_unix subsystem,…
Category: EN
Water Saci Hackers Leverage WhatsApp to Deliver Multi-Vector Persistent SORVEPOTEL Malware
A sophisticated malware campaign targeting Brazilian users has emerged with alarming capabilities. The Water Saci campaign, identified by Trend Micro analysts as leveraging the SORVEPOTEL malware, exploits WhatsApp as its primary distribution vector for rapid propagation across victim networks. First…
Around 70 countries sign new UN Cybercrime Convention—but not everyone’s on board
A global deal to fight cybercrime sounds sensible—but critics warn it could expand surveillance and criminalize researchers. This article has been indexed from Malwarebytes Read the original article: Around 70 countries sign new UN Cybercrime Convention—but not everyone’s on board
QNAP NetBak PC Agent Affected by Recent ASP.NET Core Vulnerability
The critical-severity flaw allows attackers to smuggle HTTP requests and access sensitive data, modify server files, or cause DoS conditions. The post QNAP NetBak PC Agent Affected by Recent ASP.NET Core Vulnerability appeared first on SecurityWeek. This article has been…
Critical Microsoft WSUS Security Flaw is Being Actively Exploited
A critical security flaw in Microsoft’s WSUS feature is being actively exploited in the wild by threat actors who could gain access into unpatched servers, remotely control networks, and use them to deliver malware or do other damage. Microsoft is…
Cobalt transforms ad-hoc security testing into a continuous, managed program
Cobalt has undergone a large-scale expansion of its Cobalt Offensive Security Platform to transform offensive security from ad-hoc tests into a continuous, centrally managed program. The human led, AI-powered platform provides the visibility, control, and efficiency needed to secure organizations,…
Censys delivers internet intelligence to accelerate SOC triage and response
Censys announced a new offering designed to help SOC teams accelerate alert triage, reduce mean time to triage (MTTT), and accelerate incident response. The offering delivers near real-time and historical visibility into all internet-facing assets, enabling analysts to quickly enrich…
RedTiger Malware Steals Data, Discord Tokens and Even Webcam Images
A new Python-based infostealer called RedTiger is targeting Discord gamers to steal authentication tokens, passwords, and payment information. Learn how the malware works, its evasion tactics, and essential security steps like enabling MFA. This article has been indexed from Hackread…
The Shadow War: Predatory Sparrow vs. Iran’s Infrastructure
Inside the cyber shadow war where Predatory Sparrow targets Iran’s vital systems. The post The Shadow War: Predatory Sparrow vs. Iran’s Infrastructure appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article: The…
Agent Fatigue Is Real and Your Security Stack Is to Blame
Your senior analyst stares at alert number 47. It’s not even lunch. Another “suspicious login detected.” They switch to the third dashboard of the morning, cross-reference the user activity, and confirm what they already knew. Bob from accounting is working…
Clearview AI faces criminal heat for ignoring EU data fines
Noyb says New York-based facial recognition biz flouted GDPR orders and kept scraping anyway Privacy advocates at Noyb filed a criminal complaint against Clearview AI for scraping social media users’ faces without consent to train its AI algorithms.… This article…
SimSpace Raises $39 Million for Cyber Range Platform
SimSpace provides realistic cyber ranges where organizations can test attack preparedness and validate defenses. The post SimSpace Raises $39 Million for Cyber Range Platform appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: SimSpace…
Palo Alto Networks Extends Scope and Reach of AI Capabilities
Palo Alto Networks unveils Prisma AIRS 2.0 and Cortex AgentiX to secure AI applications and automate cybersecurity workflows. With new AI-driven protection, no-code agent building, and integrated threat detection, the company aims to simplify and strengthen enterprise AI security operations.…
Nozomi Networks enhances OT security with latest Arc release
Nozomi Networks announced a cybersecurity solution designed to safely automate threat response in operational environments. With the latest release of Nozomi Arc, users gain automated threat prevention capabilities for OT endpoints. First launched in 2023, Nozomi Arc is the endpoint…
Brida Introduces New Release Offering Complete Support for Latest Frida Integration
The Brida security testing toolkit has released version 0.6, marking a significant update that brings full compatibility with the latest Frida dynamic instrumentation framework. This new release addresses critical compatibility gaps that emerged after Frida’s major overhaul in May 2025,…
The Agentic AI Platform for the Agentic Workforce of the Future
Introducing Cortex AgentiX, the Agentic AI platform for the autonomous enterprise, delivering an AI agent workforce for security and IT. The post The Agentic AI Platform for the Agentic Workforce of the Future appeared first on Palo Alto Networks Blog.…
Prisma AIRS 2.0 Is Powering the Next Wave of Secure AI Innovation
Secure your AI innovation with Prisma AIRS. Discover, assess risks and protect against AI-specific threats across agents and models. The post Prisma AIRS 2.0 Is Powering the Next Wave of Secure AI Innovation appeared first on Palo Alto Networks Blog.…
AI-Driven, Quantum-Ready Network Security
Secure your network with AI-powered, quantum-ready solutions. Discover Prisma Browser, AIRS 2.0 and a path to quantum-safe security. The post AI-Driven, Quantum-Ready Network Security appeared first on Palo Alto Networks Blog. This article has been indexed from Palo Alto Networks…
TurboMirai-Class ‘Aisuru’ Botnet Blamed for 20+ Tbps DDoS Attacks
A new class of Mirai-based DDoS botnets have been launching massive attacks, but their inability to spoof traffic enables device remediation. The post TurboMirai-Class ‘Aisuru’ Botnet Blamed for 20+ Tbps DDoS Attacks appeared first on SecurityWeek. This article has been…
A Major Leap Forward: FireTail Unveils New UI and Expansive AI Model Support to Secure & Enable Enterprise AI Adoption – FireTail Blog
Oct 28, 2025 – Alan Fagan – In the world of artificial intelligence, speed is the new security challenge. AI adoption is accelerating at an unprecedented rate, bringing transformative capabilities, and new risks, to the enterprise. As organizations race to…