Pillar Security has identified a critical indirect prompt injection vulnerability in Docker’s ‘Ask Gordon’ assistant. By poisoning metadata on Docker Hub, attackers could bypass security to exfiltrate private build logs and chat history. Discover how the “lethal trifecta” enabled this…
CLOP targets Gladinet CentreStack servers in large-scale extortion campaign
The Clop ransomware group is targeting Gladinet CentreStack file servers in a new large-scale extortion campaign. The Clop ransomware group is targeting Gladinet CentreStack file servers in a new large-scale extortion campaign aimed at stealing sensitive data from organizations worldwide.…
Making CloudFlare Workers Work for Red Teams
Conditional Access Payload Delivery (CAPD) Use Cloudflare Workers to for payload delivery behind custom headers. This article has been indexed from ZephrSec – Adventures In Information Security Read the original article: Making CloudFlare Workers Work for Red Teams
AI Advertising Company Hacked
At least some of this is coming to light: Doublespeed, a startup backed by Andreessen Horowitz (a16z) that uses a phone farm to manage at least hundreds of AI-generated social media accounts and promote products has been hacked. The hack…
Roundcube Vulnerabilities Allow Attackers to Execute Malicious Scripts
Roundcube Webmail has released critical security updates addressing two significant vulnerabilities affecting versions 1.6 and 1.5 LTS. The flaws could enable attackers to execute malicious scripts and gain unauthorized access to sensitive information through multiple attack vectors. The first vulnerability…
Microsoft Released Out-of-band Update to Fix MSMQ Bug that Impacts IIS Sites
Microsoft has deployed an emergency out-of-band update to address a significant issue with Message Queuing (MSMQ) functionality that emerged following the December 9 security patches. The update, released on December 18, 2025, targets Windows 10 versions 22H2 and 21H2 through…
New Tool Released to Detect Cisco Secure Email Gateway 0-Day Vulnerability Exploited in the Wild
A lightweight Python script to help organizations quickly identify exposure to CVE-2025-20393, a critical zero-day vulnerability in Cisco Secure Email Gateway (SEG) and Secure Malware Analytics (SMA), also known as Cisco Secure Email and Web Manager. The tool “Cisco SMA…
Hackers Using PuTTY for Both Lateral Movement and Data Exfiltration
Hackers are increasingly abusing the popular PuTTY SSH client for stealthy lateral movement and data exfiltration in compromised networks, leaving subtle forensic traces that investigators can exploit. In a recent investigation, responders pivoted to persistent Windows registry artifacts after attackers…
What is Spoofing and a Spoofing Attack? Types & Prevention
Originally published at What is Spoofing and a Spoofing Attack? Types & Prevention by EasyDMARC. Spoofing, in all its forms, makes up the … The post What is Spoofing and a Spoofing Attack? Types & Prevention appeared first on EasyDMARC.…
How should Your Business Deal with Email Impersonation Attacks in 2025?
Originally published at How should Your Business Deal with Email Impersonation Attacks in 2025? by EasyDMARC. Email impersonation attacks have evolved rapidly with the … The post How should Your Business Deal with Email Impersonation Attacks in 2025? appeared first…
Aadhaar Verification Rules Amended as India Strengthens Data Compliance
It is expected that India’s flagship digital identity infrastructure, the Aadhaar, will undergo significant changes to its regulatory framework in the coming days following a formal amendment to the Aadhaar (Targeted Determination of Services and Benefits Management) Regulations, 2.0.…
Denmark Blames Russia for “Destructive” Cyber-Attacks
The Danish intelligence service believes some pro-Russian hacktivist groups have links with the Kremlin This article has been indexed from www.infosecurity-magazine.com Read the original article: Denmark Blames Russia for “Destructive” Cyber-Attacks
The Asset Layer of the Web: Tokenization Is Becoming Finance’s New Backend Infrastructure
Crypto’s public image lagged reality. Stablecoins, tokenization, and regulation now power a blockchain backend settling global finance at institutional scale. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI, and More Read the original article: The…
Closing Out 2025 with Gratitude (and Momentum)
To the OffSec community, As 2025 comes to a close, we want to pause and say thank you. Whether you trained with us, earned a certification, hired through our platform, or cheered others on from the sidelines, you helped make…
‘Kimwolf’ Android Botnet Ensnares 1.8 Million Devices
Linked to the Aisuru IoT botnet, Kimwolf was seen launching over 1.7 billion DDoS attack commands and increasing its C&C domain’s popularity. The post ‘Kimwolf’ Android Botnet Ensnares 1.8 Million Devices appeared first on SecurityWeek. This article has been indexed…
University of Sydney Data Breach Affects 27,000 Individuals
Downloaded from a code library, the information pertains to current and former staff and affiliates, and to alumni and students. The post University of Sydney Data Breach Affects 27,000 Individuals appeared first on SecurityWeek. This article has been indexed from…
Best Vulnerability Scanning Tool for 2026- Top 10 List
By 2026, vulnerability scanning will no longer be about running a weekly scan and exporting a PDF. Modern environments are hybrid, ephemeral, API-driven, and constantly changing. Tools that haven’t adapted are already obsolete, even if they still have brand recognition.…
WatchGuard Warns of Active Exploitation of Critical Fireware OS VPN Vulnerability
WatchGuard has released fixes to address a critical security flaw in Fireware OS that it said has been exploited in real-world attacks. Tracked as CVE-2025-14733 (CVSS score: 9.3), the vulnerability has been described as a case of out-of-bounds write affecting…
US Charges 54 in Massive ATM Jackpotting Conspiracy
The US has charged 54 individuals in a massive ATM jackpotting conspiracy linked to Venezuelan crime syndicate Tren de Aragua, accused of stealing millions This article has been indexed from www.infosecurity-magazine.com Read the original article: US Charges 54 in Massive…
Ministers confirm breach at UK Foreign Office but details remain murky
Officials admit ‘there certainly has been a hack,’ but refuse to confirm China link or data theft The UK’s Foreign Office is investigating a confirmed cyberattack it learned about in October, senior ministers say.… This article has been indexed from…
IT Security News Hourly Summary 2025-12-19 12h : 7 posts
7 posts were published in the last hour 11:4 : ASRock, ASUS, GIGABYTE, MSI Boards vulnerable to pre-boot memory attacks 11:4 : North Korean Hackers Make History with $2 Billion Crypto Heist in 2025 11:4 : Faith in the internet…
DLLs & TLS Callbacks, (Fri, Dec 19th)
Xavier's diary entry “Abusing DLLs EntryPoint for the Fun” inspired me to do some tests with TLS Callbacks and DLLs. This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: DLLs & TLS Callbacks,…
ASRock, ASUS, GIGABYTE, MSI Boards vulnerable to pre-boot memory attacks
A new UEFI flaw exposes some ASRock, ASUS, GIGABYTE, and MSI motherboards to early-boot DMA attacks, bypassing IOMMU protections. Researchers warn of a new UEFI vulnerability that affects select ASRock, ASUS, GIGABYTE, and MSI motherboards, enabling early-boot DMA attacks that…
North Korean Hackers Make History with $2 Billion Crypto Heist in 2025
North Korean hackers reached a dangerous milestone in 2025, stealing a record-breaking $2.02 billion in cryptocurrency throughout the year. This represents a 51% increase from 2024, pushing their total theft since 2016 to $6.75 billion. The alarming trend shows that…