26 posts were published in the last hour 18:3 : New Oracle E-Business Suite Bug Could Let Hackers Access Data Without Login 17:5 : IT Security News Hourly Summary 2025-10-12 18h : 3 posts 16:32 : NDSS 2025 – Keynote…
ISC Stormcast For Monday, October 13th, 2025 https://isc.sans.edu/podcastdetail/9652, (Sun, Oct 12th)
This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: ISC Stormcast For Monday, October 13th, 2025…
New Oracle E-Business Suite Bug Could Let Hackers Access Data Without Login
Oracle on Saturday issued a security alert warning of a fresh security flaw impacting its E-Business Suite that it said could allow unauthorized access to sensitive data. The vulnerability, tracked as CVE-2025-61884, carries a CVSS score of 7.5, indicating high…
IT Security News Hourly Summary 2025-10-12 18h : 3 posts
3 posts were published in the last hour 16:2 : Threat Actors Exploit Discord Webhooks for C2 via npm, PyPI, and Ruby Packages 15:32 : Clop Ransomware group claims the hack of Harvard University 15:32 : Is CMMC 3.0 on…
NDSS 2025 – Keynote 2: Towards Resilient Systems In An Increasingly Hostile World
Author, Creator & Presenter: Dr. Kathleen Fisher PhD, Director, Information Innovation Office (I2O), US Defense Advanced Research Projects Agency (DARPA) Our thanks to the Network and Distributed System Security (NDSS) Symposium for publishing their Creators, Authors and Presenter’s superb NDSS…
Microsoft to end support for Windows 10, 400 million PCs will be impacted
Microsoft is ending software updates for Windows 10 From October 14, Microsoft will end its support for Windows 10, experts believe it will impact around 400 million computers, exposing them to cyber threats. People and groups worldwide are requesting that…
Threat Actors Exploit Discord Webhooks for C2 via npm, PyPI, and Ruby Packages
Threat actors are increasingly abusing Discord webhooks as covert command-and-control (C2) channels inside open-source packages, enabling stealthy exfiltration of secrets, host telemetry, and developer environment data without standing up bespoke infrastructure. Socket’s Threat Research Team has documented active abuse across…
Clop Ransomware group claims the hack of Harvard University
The notorious Clop Ransomware group claims the hack of Harvard University and added the prestigious institute to its Tor data leak site. The Clop Ransomware group announced the hack of the prestigious Harvard University. The cybercrime group created a page…
Is CMMC 3.0 on the Horizon? How Defense Contractors Can Prepare Now
The Department of Defense recently sent defense contractors a clear signal: an update to the recently finalized CMMC 2.0 is likely coming and the time to prepare is now. In… The post Is CMMC 3.0 on the Horizon? How Defense…
Zimbra Zero-Day Exploit Used in ICS File Attacks to Steal Sensitive Data
Security researchers have discovered that hackers exploited a zero-day vulnerability in Zimbra Collaboration Suite (ZCS) earlier this year using malicious calendar attachments to steal sensitive data. The attackers embedded harmful JavaScript code inside .ICS files—typically used to schedule and…
IT Security News Hourly Summary 2025-10-12 15h : 1 posts
1 posts were published in the last hour 13:3 : In Defense of Good Bots: Good Bots Exist, But Only When We Build Them That Way
Cybersecurity Newsletter Weekly – Discord, Red Hat Data Breach, 7-Zip Vulnerabilities and Sonicwall Firewall Hack
Welcome to this week’s edition of the Cybersecurity Newsletter Weekly, where we dive into the most pressing threats and vulnerabilities shaping the digital landscape. As cyber risks continue to evolve at breakneck speed, our October 12, 2025, roundup spotlights a…
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 66
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter Ransomware and Cyber Extortion in Q3 2025 Investigating active exploitation of CVE-2025-10035 GoAnywhere Managed File Transfer vulnerability XWorm V6:…
Security Affairs newsletter Round 545 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. CVE-2025-11371:…
Ransomware Gang Claims Boeing, Samsung Supplier Breach in 11GB Data Theft
A ransomware group named J GROUP claims to have breached Dimensional Control Systems (DCS), stealing 11GB of sensitive data, including proprietary software architecture, client metadata, and internal security procedures. DCS, a Michigan-based provider of dimensional engineering software, serves major…
Thousands of Government IDs at Risk Following Breach Involving Discord’s Verification Partner
Currently, one of the threats associated with digital identity verification can often be found in the form of cyberattacks targeting third-party service providers linked to Discord, with the result that sensitive personal data belonging to nearly 70,000 users may have…
In Defense of Good Bots: Good Bots Exist, But Only When We Build Them That Way
The word “bot” doesn’t have the best reputation right now. You hear it and think of election manipulation, fake social media accounts, scammy customer service chatbots, or malware scanning networks…. The post In Defense of Good Bots: Good Bots Exist,…
Revisiting CISA Priorities for FY2026 and Beyond
The Cybersecurity and Infrastructure Security Agency is under new leadership and focus as we enter FY2026. So what are the priorities for the coming year? The post Revisiting CISA Priorities for FY2026 and Beyond appeared first on Security Boulevard. This…
IT Security News Hourly Summary 2025-10-12 12h : 2 posts
2 posts were published in the last hour 10:2 : Another remotely exploitable Oracle EBS vulnerability requires your attention (CVE-2025-61884) 9:32 : Quantum simulations that once needed supercomputers now run on laptops
Another remotely exploitable Oracle EBS vulnerability requires your attention (CVE-2025-61884)
Oracle has revealed the existence of yet another remotely exploitable Oracle E-Business Suite vulnerability (CVE-2025-61884). About CVE-2025-61884 CVE-2025-61884 is a vulnerability in the Runtime user interface in the Oracle Configurator product of Oracle E-Business Suite (EBS). Like CVE-2025-61882 before it,…
Quantum simulations that once needed supercomputers now run on laptops
A team at the University at Buffalo has made it possible to simulate complex quantum systems without needing a supercomputer. By expanding the truncated Wigner approximation, they’ve created an accessible, efficient way to model real-world quantum behavior. Their method translates…
Week in review: Hackers extorting Salesforce, CentreStack 0-day exploited
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: How to get better results from bug bounty programs without wasting money The wrong bug bounty strategy can flood your team with low-value reports. The…
IT Security News Hourly Summary 2025-10-12 09h : 1 posts
1 posts were published in the last hour 6:32 : Is Your Spend on Cloud Security Justified?
Wireshark 4.4.10 and 4.6.0 Released, (Sun, Oct 12th)
Wireshark release 4.4.10 fixes 6 bugs and 1 vulnerability (in the MONGO dissector). This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: Wireshark 4.4.10 and 4.6.0 Released, (Sun, Oct 12th)