Tag: flaw

Hackers Abuse runc Tool to Escape Containers and Compromise Hosts

Nov 10, 2025 8:19 AM

Tags: access, container, cve, cyber, docker, flaw, hacker, kubernetes, tool, vulnerability

Three critical vulnerabilities in runc, the widely-used container runtime that powers Docker and Kubernetes, have been disclosed, allowing attackers to break out of container isolation and gain root access to host systems. The flaws, identified as CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881, were revealed by a SUSE researcher on November 5, 2025. CVE ID Affected Versions Fixed…
Monsta FTP Remote Code Execution Flaw Being Exploited in the Wild

Nov 10, 2025 6:20 AM

Tags: cve, cyber, exploit, finance, flaw, remote-code-execution, vulnerability

Security researchers have discovered an actively exploited remote code execution vulnerability in Monsta FTP, a web-based FTP client used by financial institutions, enterprises, and individual users worldwide. The flaw, now tracked as CVE-2025-34299, affects versions up to 2.11.2 and allows attackers to execute arbitrary code on vulnerable servers without authentication. CVE ID Vulnerability Type Affected…
QNAP fixed multiple zero-days in its software demonstrated at Pwn2Own 2025

Nov 10, 2025 5:19 AM

Tags: backup, data, exploit, flaw, malware, software, vulnerability, zero-day

QNAP patched seven zero-days used at Pwn2Own 2025 affecting QTS, QuTS hero, Hyper Data Protector, Malware Remover, and HBS 3. Taiwanese vendor QNAP patched seven zero-day vulnerabilities exploited at Pwn2Own Ireland 2025. The flaws affected QTS, QuTS hero, Hyper Data Protector, Malware Remover, and HBS 3 Hybrid Backup Sync. The vulnerabilities addressed by the company…
QNAP fixed multiple zero-days in its software demonstrated at Pwn2Own 2025

Nov 10, 2025 5:19 AM

Tags: backup, data, exploit, flaw, malware, software, vulnerability, zero-day

QNAP patched seven zero-days used at Pwn2Own 2025 affecting QTS, QuTS hero, Hyper Data Protector, Malware Remover, and HBS 3. Taiwanese vendor QNAP patched seven zero-day vulnerabilities exploited at Pwn2Own Ireland 2025. The flaws affected QTS, QuTS hero, Hyper Data Protector, Malware Remover, and HBS 3 Hybrid Backup Sync. The vulnerabilities addressed by the company…
Dangerous runC flaws could allow hackers to escape Docker containers

Nov 9, 2025 5:20 PM

Tags: access, container, docker, exploit, flaw, hacker, kubernetes, vulnerability

Three newly disclosed vulnerabilities in the runC container runtime used in Docker and Kubernetes could be exploited to bypass isolation restrictions and get access to the host system. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/dangerous-runc-flaws-could-allow-hackers-to-escape-docker-containers/
Week in review: Cisco fixes critical UCCX flaws, November 2025 Patch Tuesday forecast

Nov 9, 2025 10:19 AM

Tags: cisco, flaw, update, WeeklyReview

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Securing real-time payments without slowing them down In this Help Net … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/11/09/week-in-review-cisco-fixes-critical-uccx-flaws-november-2025-patch-tuesday-forecast/
Balancer hack analysis and guidance for the DeFi ecosystem

Nov 8, 2025 1:19 PM

Tags: access, attack, blockchain, control, crypto, exploit, finance, flaw, guide, intelligence, monitoring, oracle, radius, risk, software, strategy, threat, tool, update, vulnerability

TL;DR The root cause of the hack was a rounding direction issue that had been present in the code for many years. When the bug was first introduced, the threat landscape of the blockchain ecosystem was significantly different, and arithmetic issues in particular were not widely considered likely vectors for exploitation. As low-hanging attack paths…
Samsung Mobile Flaw Exploited as Zero-Day to Deploy LANDFALL Android Spyware

Nov 8, 2025 7:19 AM

Tags: android, attack, cve, exploit, flaw, mobile, spyware, zero-day

A now-patched security flaw in Samsung Galaxy Android devices was exploited as a zero-day to deliver a “commercial-grade” Android spyware dubbed LANDFALL in targeted attacks in the Middle East.The activity involved the exploitation of CVE-2025-21042 (CVSS score: 8.8), an out-of-bounds write flaw in the “libimagecodec.quram.so” component that could allow remote attackers to execute arbitrary First…
Samsung Mobile Flaw Exploited as Zero-Day to Deploy LANDFALL Android Spyware

Nov 8, 2025 7:19 AM

Tags: android, attack, cve, exploit, flaw, mobile, spyware, zero-day

A now-patched security flaw in Samsung Galaxy Android devices was exploited as a zero-day to deliver a “commercial-grade” Android spyware dubbed LANDFALL in targeted attacks in the Middle East.The activity involved the exploitation of CVE-2025-21042 (CVSS score: 8.8), an out-of-bounds write flaw in the “libimagecodec.quram.so” component that could allow remote attackers to execute arbitrary First…
Samsung Zero-Day Flaw Exploited by ‘Landfall’ Spyware

Nov 8, 2025 12:19 AM

Tags: exploit, flaw, hacker, middle-east, spyware, threat, zero-day

Spyware Targets Samsung Galaxy Devices, Says Unit 42. Hackers used previously unknown commercial spyware dubbed Landfall to surveil the activities of Samsung Galaxy device owners in the Middle East, say security researchers who posit the threat actor has connections to the United Arab Emirates. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/samsung-zero-day-flaw-exploited-by-landfall-spyware-a-29963
LANDFALL spyware exploited Samsung zero-day CVE-2025-21042 in Middle East attacks

Nov 8, 2025 12:19 AM

Tags: attack, cve, exploit, flaw, middle-east, spyware, zero-day

A now-patched Samsung Galaxy flaw, tracked as CVE-2025-21042, was exploited as a zero-day to deploy LANDFALL spyware in targeted attacks in Middle East. Samsung patched a flaw exploited as a zero-day, tracked as CVE-2025-21042 (CVSS score of 8.8), to deploy LANDFALL spyware on Galaxy devices in Middle East attacks. >>Unit 42 researchers have uncovered a…
Previously unknown Landfall spyware used in 0-day attacks on Samsung phones

Nov 7, 2025 11:19 PM

Tags: attack, espionage, flaw, phone, spyware, zero-day

‘Precision espionage campaign’ began months before the flaw was fixed First seen on theregister.com Jump to article: www.theregister.com/2025/11/07/landfall_spyware_samsung_0days/
Cisco Warns of Active Exploitation of ASA and FTD 0-Day Vulnerability

Nov 7, 2025 9:19 PM

Tags: cisco, exploit, firewall, flaw, hacker, risk, software, vulnerability, zero-day

Cisco warns that hackers are actively exploiting a 0-day flaw in its firewall software, putting unpatched systems at risk of full compromise. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/cisco-warns-of-active-exploitation-of-asa-and-ftd-0-day-vulnerability/
Cybersecurity Snapshot: AI Will Take Center Stage in Cyber in 2026, Google Says, as MITRE Revamps ATTCK Framework

Nov 7, 2025 8:20 PM

Tags: access, ai, android, antivirus, api, apple, attack, authentication, business, cio, cisa, ciso, cloud, communications, container, control, credentials, cryptography, cve, cyber, cybercrime, cybersecurity, data, defense, detection, docker, endpoint, exploit, firewall, flaw, framework, google, governance, group, guide, hacker, identity, infrastructure, injection, Internet, kubernetes, leak, least-privilege, linux, malicious, malware, mfa, microsoft, mitigation, mitre, mobile, network, offense, oracle, programming, resilience, risk, risk-management, service, skills, soc, social-engineering, software, sophos, spam, strategy, supply-chain, switch, tactics, technology, threat, tool, unauthorized, update, vulnerability, windows, zero-day

Learn why Google expects AI to transform cyber defense and offense next year, and explore MITRE’s major update to the ATT&CK knowledge base. We also cover a new McKinsey playbook for agentic AI security, along with the latest on Microsoft Exchange protection and the CIS Benchmarks. Key takeaways Google is forecasting that AI will kick…
Cybersecurity Snapshot: AI Will Take Center Stage in Cyber in 2026, Google Says, as MITRE Revamps ATTCK Framework

Nov 7, 2025 8:20 PM

Tags: access, ai, android, antivirus, api, apple, attack, authentication, business, cio, cisa, ciso, cloud, communications, container, control, credentials, cryptography, cve, cyber, cybercrime, cybersecurity, data, defense, detection, docker, endpoint, exploit, firewall, flaw, framework, google, governance, group, guide, hacker, identity, infrastructure, injection, Internet, kubernetes, leak, least-privilege, linux, malicious, malware, mfa, microsoft, mitigation, mitre, mobile, network, offense, oracle, programming, resilience, risk, risk-management, service, skills, soc, social-engineering, software, sophos, spam, strategy, supply-chain, switch, tactics, technology, threat, tool, unauthorized, update, vulnerability, windows, zero-day

Learn why Google expects AI to transform cyber defense and offense next year, and explore MITRE’s major update to the ATT&CK knowledge base. We also cover a new McKinsey playbook for agentic AI security, along with the latest on Microsoft Exchange protection and the CIS Benchmarks. Key takeaways Google is forecasting that AI will kick…
Cisco ISE Bug Exposes Networks to Remote Restart Attacks

Nov 7, 2025 8:20 PM

Tags: attack, authentication, cisco, flaw, network, service

A critical flaw in Cisco ISE allows remote attackers to trigger system restarts, disrupting authentication and exposing networks to denial-of-service attacks. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/news/cisco-ise-bug-exposes-networks-to-remote-restart-attacks/
Amazon WorkSpaces Linux Bug Lets Attackers Steal Credentials

Nov 7, 2025 8:20 PM

Tags: authentication, credentials, flaw, linux

A flaw in Amazon WorkSpaces for Linux lets attackers steal authentication tokens. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/news/amazon-workspaces-linux-vulnerability/
QNAP fixes seven NAS zero-day flaws exploited at Pwn2Own

Nov 7, 2025 8:20 PM

Tags: exploit, flaw, network, vulnerability, zero-day

QNAP has fixed seven zero-day vulnerabilities that security researchers exploited to hack QNAP network-attached storage (NAS) devices during the Pwn2Own Ireland 2025 competition. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/qnap-fixes-seven-nas-zero-day-vulnerabilities-exploited-at-pwn2own/
Cisco ISE Bug Exposes Networks to Remote Restart Attacks

Nov 7, 2025 8:20 PM

Tags: attack, authentication, cisco, flaw, network, service

A critical flaw in Cisco ISE allows remote attackers to trigger system restarts, disrupting authentication and exposing networks to denial-of-service attacks. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/news/cisco-ise-bug-exposes-networks-to-remote-restart-attacks/
Amazon WorkSpaces Linux Bug Lets Attackers Steal Credentials

Nov 7, 2025 8:20 PM

Tags: authentication, credentials, flaw, linux

A flaw in Amazon WorkSpaces for Linux lets attackers steal authentication tokens. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/news/amazon-workspaces-linux-vulnerability/
QNAP fixes seven NAS zero-day flaws exploited at Pwn2Own

Nov 7, 2025 8:20 PM

Tags: exploit, flaw, network, vulnerability, zero-day

QNAP has fixed seven zero-day vulnerabilities that security researchers exploited to hack QNAP network-attached storage (NAS) devices during the Pwn2Own Ireland 2025 competition. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/qnap-fixes-seven-nas-zero-day-vulnerabilities-exploited-at-pwn2own/
Samsung Zero-Click Flaw Exploited to Deploy LANDFALL Android Spyware via WhatsApp

Nov 7, 2025 7:20 PM

Tags: android, attack, cve, exploit, flaw, spyware, zero-day

A now-patched security flaw in Samsung Galaxy Android devices was exploited as a zero-day to deliver a “commercial-grade” Android spyware dubbed LANDFALL in targeted attacks in the Middle East.The activity involved the exploitation of CVE-2025-21042 (CVSS score: 8.8), an out-of-bounds write flaw in the “libimagecodec.quram.so” component that could allow remote attackers to execute arbitrary First…
Actively exploited firewall flaws now abused for DoS attacks

Nov 7, 2025 5:19 PM

Tags: attack, cisco, dos, exploit, firewall, flaw, vulnerability, zero-day

Cisco warned this week that two vulnerabilities, which have been exploited in zero-day attacks, are now being abused to force ASA and FTD firewalls into reboot loops. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisco-actively-exploited-firewall-flaws-now-abused-for-dos-attacks/
Actively exploited firewall flaws now abused for DoS attacks

Nov 7, 2025 5:19 PM

Tags: attack, cisco, dos, exploit, firewall, flaw, vulnerability, zero-day

Cisco warned this week that two vulnerabilities, which have been exploited in zero-day attacks, are now being abused to force ASA and FTD firewalls into reboot loops. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisco-actively-exploited-firewall-flaws-now-abused-for-dos-attacks/
Ollama, Nvidia Flaws Put AI Infrastructure at Risk

Nov 7, 2025 3:19 PM

Tags: ai, flaw, infrastructure, nvidia, risk, vulnerability

Security researchers discovered multiple vulnerabilities in AI infrastructure products, including one capable of remote code execution. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/ollama-nvidia-flaws-ai-infrastructure-risk
Critical CVE-2025-12779 Vulnerability Exposes Amazon WorkSpaces for Linux Users to Token Theft

Nov 7, 2025 3:19 PM

Tags: access, authentication, cve, flaw, linux, theft, unauthorized, vulnerability

A newly disclosed security flaw in the Amazon WorkSpaces client for Linux has raised serious concerns across organizations relying on AWS virtual desktop infrastructure. The vulnerability, identified as CVE-2025-12779, enables local attackers to extract valid authentication tokens and gain unauthorized access to other users’ WorkSpace sessions. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/amazon-workspaces-cve-2025-12779/
Cisco Issues Critical Warning Over New Unified Contact Center Express Vulnerabilities

Nov 7, 2025 3:19 PM

Tags: access, advisory, authentication, cisco, flaw, vulnerability

Cisco has issued an urgent security advisory detailing two critical vulnerabilities affecting its Unified Contact Center Express (Unified CCX) platform. The flaws, identified as CVE-2025-20354 and CVE-2025-20358, could allow unauthenticated remote attackers to execute arbitrary code, bypass authentication, and potentially gain root-level access to affected systems. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cisco-warns-of-cve-2025-20354/
Cisco Issues Critical Warning Over New Unified Contact Center Express Vulnerabilities

Nov 7, 2025 3:19 PM

Tags: access, advisory, authentication, cisco, flaw, vulnerability

Cisco has issued an urgent security advisory detailing two critical vulnerabilities affecting its Unified Contact Center Express (Unified CCX) platform. The flaws, identified as CVE-2025-20354 and CVE-2025-20358, could allow unauthenticated remote attackers to execute arbitrary code, bypass authentication, and potentially gain root-level access to affected systems. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cisco-warns-of-cve-2025-20354/
Critical CVE-2025-12779 Vulnerability Exposes Amazon WorkSpaces for Linux Users to Token Theft

Nov 7, 2025 3:19 PM

Tags: access, authentication, cve, flaw, linux, theft, unauthorized, vulnerability

A newly disclosed security flaw in the Amazon WorkSpaces client for Linux has raised serious concerns across organizations relying on AWS virtual desktop infrastructure. The vulnerability, identified as CVE-2025-12779, enables local attackers to extract valid authentication tokens and gain unauthorized access to other users’ WorkSpace sessions. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/amazon-workspaces-cve-2025-12779/
Critical CVE-2025-12779 Vulnerability Exposes Amazon WorkSpaces for Linux Users to Token Theft

Nov 7, 2025 3:19 PM

Tags: access, authentication, cve, flaw, linux, theft, unauthorized, vulnerability

A newly disclosed security flaw in the Amazon WorkSpaces client for Linux has raised serious concerns across organizations relying on AWS virtual desktop infrastructure. The vulnerability, identified as CVE-2025-12779, enables local attackers to extract valid authentication tokens and gain unauthorized access to other users’ WorkSpace sessions. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/amazon-workspaces-cve-2025-12779/