Tag: update

Google addresses 107 Android vulnerabilities, including two zero-days

Dec 1, 2025 11:49 PM

Tags: android, google, update, vulnerability, zero-day

The company’s latest security update contains the second-highest number of defects patched so far this year. First seen on cyberscoop.com Jump to article: cyberscoop.com/android-security-update-december-2025/
SmartTube YouTube app for Android TV breached to push malicious update

Dec 1, 2025 8:49 PM

Tags: access, android, malicious, open-source, update

The popular open-source SmartTube YouTube client for Android TV was compromised after an attacker gained access to the developer’s signing keys, leading to a malicious update being pushed to users. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/smarttube-youtube-app-for-android-tv-breached-to-push-malicious-update/
What are zero-day attacks and why do they work?

Dec 1, 2025 6:49 PM

Tags: access, antivirus, attack, breach, bug-bounty, cyber, cybersecurity, data, detection, edr, email, endpoint, espionage, exploit, government, group, hacker, infrastructure, intelligence, malicious, mobile, network, phishing, risk, service, software, spear-phishing, strategy, supply-chain, tactics, threat, tool, unauthorized, update, vulnerability, vulnerability-management, zero-day, zero-trust

No available patch: These exploits are unknown to both vendors and defenders, meaning they have not been identified and patched yet, leaving the door open for attackers.High-value targets: These attacks are often used in cyber espionage, ransomware campaigns, and advanced persistent threats (APTs) to target high-value assets with sensitive data.Difficult to detect: These exploits often are missed by traditional detection tools, especially…
What are zero-day attacks and why do they work?

Dec 1, 2025 6:49 PM

Tags: access, antivirus, attack, breach, bug-bounty, cyber, cybersecurity, data, detection, edr, email, endpoint, espionage, exploit, government, group, hacker, infrastructure, intelligence, malicious, mobile, network, phishing, risk, service, software, spear-phishing, strategy, supply-chain, tactics, threat, tool, unauthorized, update, vulnerability, vulnerability-management, zero-day, zero-trust

No available patch: These exploits are unknown to both vendors and defenders, meaning they have not been identified and patched yet, leaving the door open for attackers.High-value targets: These attacks are often used in cyber espionage, ransomware campaigns, and advanced persistent threats (APTs) to target high-value assets with sensitive data.Difficult to detect: These exploits often are missed by traditional detection tools, especially…
Contagious Interview attackers go ‘full stack’ to fool developers

Dec 1, 2025 5:49 PM

Tags: attack, control, credentials, crypto, data, endpoint, exploit, github, infrastructure, intelligence, macOS, malicious, malware, open-source, social-engineering, supply-chain, theft, threat, update, windows, worm

Coding tasks lead to malware delivery: These defensive measures are effective because Contagious Interview’s entry vector relies heavily on social engineering, using fake interview tasks to trick developers into installing compromised dependencies.The campaign exploits NPM, a widely used package registry for JavaScript and Node.js, by publishing packages that appear benign but carry hidden payloads. The…
Qualcomm Alerts Users to Critical Flaws That Compromise the Secure Boot Process

Dec 1, 2025 3:49 PM

Tags: cyber, flaw, malicious, software, update, vulnerability

Qualcomm Technologies, Inc. has issued an urgent security bulletin warning customers about multiple critical vulnerabilities affecting millions of devices worldwide. The most severe flaw threatens the secure boot process, a fundamental security mechanism that protects devices from malicious software during startup. The security update, published today, addresses six high-priority vulnerabilities discovered in Qualcomm’s proprietary software.…
Airbus Nears Completion of A320 Retrofit as Regulators Monitor Largest Emergency Recall in Company History

Dec 1, 2025 2:49 PM

Tags: service, software, update, vulnerability

Airbus has entered the final phase of its unprecedented global retrofit effort, confirming that fewer than 100 A320s in service still require updates after the discovery of a software vulnerability that triggered the largest emergency recall the manufacturer has ever executed. The company disclosed on Monday that nearly the entire A320-family fleet, about 6,000 aircraft…
Gemini 3 aus Sicht der IT-Sicherheit Der KI-Assistent als Geschäftsgrundlage

Dec 1, 2025 2:49 PM

Tags: ai, google, update

Am 18. November 2025 stellte Google die neueste Version seines KI-Assistenten vor: Gemini 3. Im Mittelpunkt der Schlagzeilen standen Leistungssteigerungen, multimodale Fähigkeiten und verbessertes Reasoning. Doch statt lediglich zu schauen, was die neue Version besser kann als die alte, sollten Führungskräfte sich die weitreichenden Implikationen dieses Updates vergegenwärtigen. Denn mit der Veröffentlichung von Gemini 3…
Microsoft bestätigt Bug: Windows-11-Update lässt Passwortin verschwinden

Dec 1, 2025 9:49 AM

Tags: microsoft, password, update, windows

Windows 11 bereitet Anwendern schon seit Monaten Probleme bei der Anmeldung mittels Passwort. Microsoft liefert bisher nur einen Workaround. First seen on golem.de Jump to article: www.golem.de/news/microsoft-bestaetigt-bug-windows-11-update-laesst-passwort-log-in-verschwinden-2512-202758.html
Microsofts Update Health Tools (KB4023057) war per RCE angreifbar

Nov 30, 2025 12:49 AM

Tags: microsoft, rce, remote-code-execution, service, tool, update, windows

Die Microsofts Update Health Tools (KB4023057) Deutsch “Integritätstools Windows Update Service-Komponenten” war in der Version 1.0 angreifbar und ermöglichte Remote Code Execution-Angriffe. In der Version 1.1 sind zumindest Systeme für den EU-Bereich geschützt, wenn ich es richtig interpretiere. … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/11/30/microsofts-update-health-tools-kb4023057-war-per-rce-angreifbar/
Windows updates make password login option invisible

Nov 28, 2025 7:49 PM

Tags: login, microsoft, password, update, windows

Microsoft warned users that Windows 11 updates released since August may cause the password sign-in option to disappear from the lock screen options, even though the button remains functional. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-windows-updates-hide-password-icon-on-lock-screen/
Google-Antigravity-Lücke: KI-Coding-Tool anfällig für Angriffe

Nov 28, 2025 3:49 PM

Tags: access, ai, backdoor, bug, cyberattack, exploit, google, tool, update, vulnerability

Eine Sicherheitslücke in Googles KI-Coding-Tool Antigravity erlaubt es Angreifern, Schadcode einzuschleusen.Anfang November brachte Google sein KI-gestütztes Coding-Tool Antigravity an den Start. Doch bereits nach 24 Stunden sind Forscher des Security-Anbieters Mindgard auf eine schwerwiegende Schwachstelle gestoßen, über die eine dauerhafte Backdoor und Schadcode installiert werden kann.Der kürzlich veröffentlichte Forschungsbericht weist darauf hin, dass sich das…
RomCom tries dropping a notromantic payload on Ukraine-linked US firms

Nov 28, 2025 1:49 PM

Tags: attack, defense, detection, endpoint, government, group, malicious, monitoring, threat, ukraine, update

Target profile focused on Ukraine support: The second major insight from the report concerns victim selection. The targeted firm was not a defense contractor or a government body but a civil engineering company in the US. Its only notable link was past work involving a Ukraine-affiliated city.According to Arctic Wolf, the incident fits RomCom’s broader…
RomCom tries dropping a notromantic payload on Ukraine-linked US firms

Nov 28, 2025 1:49 PM

Tags: attack, defense, detection, endpoint, government, group, malicious, monitoring, threat, ukraine, update

Target profile focused on Ukraine support: The second major insight from the report concerns victim selection. The targeted firm was not a defense contractor or a government body but a civil engineering company in the US. Its only notable link was past work involving a Ukraine-affiliated city.According to Arctic Wolf, the incident fits RomCom’s broader…
Microsoft Blocks External Scripts in Entra ID Logins to Boost Security

Nov 28, 2025 6:49 AM

Tags: cloud, cyber, identity, login, microsoft, unauthorized, update

Microsoft has announced a significant security change to the Microsoft Entra ID sign-in experience that will block external scripts from running during user logins. The update is designed to stop unauthorized or injected code from executing on the login page. It is part of Microsoft’s broader Secure Future Initiative to harden its cloud identity platform.…
Quttera Launches >>Evidence-as-Code<< API to Automate Security Compliance for SOC 2 and PCI DSS v4.0

Nov 27, 2025 6:49 PM

Tags: ai, api, compliance, cyber, intelligence, malware, PCI, soc, threat, update

New API capabilities and AI-powered Threat Encyclopedia eliminate manual audit preparation, providing real-time compliance evidence and instant threat intelligence Quttera today announced major enhancements to its Web Malware Scanner API that transform static security scanning into automated compliance evidence. The update introduces real-time evidence streaming and compliance mapping, directly addressing the manual burden of audit…
Microsoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP Update

Nov 27, 2025 5:49 PM

Tags: attack, authentication, injection, login, microsoft, unauthorized, update

Microsoft has announced plans to improve the security of Entra ID authentication by blocking unauthorized script injection attacks starting a year from now.The update to its Content Security Policy (CSP) aims to enhance the Entra ID sign-in experience at “login.microsoftonline[.]com” by only letting scripts from trusted Microsoft domains run.”This update strengthens security and adds an…
NVIDIA DGX Spark Flaws Allow Attackers to Run Malicious Code and Launch DoS Attacks

Nov 27, 2025 3:49 PM

Tags: attack, cve, cvss, cyber, dos, flaw, malicious, nvidia, service, update, vulnerability

NVIDIA has released security updates to address fourteen critical vulnerabilities in its DGX Spark system. These flaws could allow attackers to execute malicious code, steal sensitive information, and launch denial-of-service attacks that crash the system. The vulnerabilities affect all versions of NVIDIA DGX OS before the latest OTA0 update. CVE ID Severity CVSS Score Potential…
NVIDIA DGX Spark Flaws Allow Attackers to Run Malicious Code and Launch DoS Attacks

Nov 27, 2025 3:49 PM

Tags: attack, cve, cvss, cyber, dos, flaw, malicious, nvidia, service, update, vulnerability

NVIDIA has released security updates to address fourteen critical vulnerabilities in its DGX Spark system. These flaws could allow attackers to execute malicious code, steal sensitive information, and launch denial-of-service attacks that crash the system. The vulnerabilities affect all versions of NVIDIA DGX OS before the latest OTA0 update. CVE ID Severity CVSS Score Potential…
Neues ToddyCat-Toolkit greift Outlook und Microsoft-Token an

Nov 27, 2025 2:49 PM

Tags: access, apt, backdoor, browser, chrome, cloud, cyberattack, exploit, governance, government, Internet, kaspersky, mail, microsoft, open-source, powershell, tool, update, vulnerability, windows

Die APT-Gruppe ToddyCat hat ihren Fokus auf den Diebstahl von Outlook-E-Mail-Daten und Microsoft 365-Zugriffstoken verlagert.Forscher von Kaspersky Labs haben festgestellt, dass sich die APT-Gruppe (Advanced Persistent Threat) ToddyCat jetzt darauf spezialisiert hat, Outlook-E-Mail-Daten und Microsoft 365-Zugriffstoken zu stehlen.Demnachhat die Hackerbande ihr Toolkit Ende 2024 und Anfang 2025 weiterentwickelt, um nicht nur wie bisher Browser-Anmeldedaten zu…
Opendesk 1.10 erhöht Sicherheit und optimiert Zusammenarbeit

Nov 27, 2025 9:49 AM

Tags: update

Mit der Veröffentlichung von Opendesk 1.10 stehen Behörden neue Funktionen für Sicherheit und Verwaltung bereit. First seen on golem.de Jump to article: www.golem.de/news/update-opendesk-1-10-erhoeht-sicherheit-und-optimiert-zusammenarbeit-2511-202648.html
For the first time, a RomCom payload has been observed being distributed via SocGholish

Nov 26, 2025 9:49 PM

Tags: exploit, malware, threat, update

RomCom malware used the SocGholish fake update loader to deliver Mythic Agent to a U.S. civil engineering firm. In September 2025, Arctic Wolf Labs observed RomCom threat actors delivering the Mythic Agent via SocGholish to a U.S. company. The researchers noticed that the payload executed about 10 minutes after initial exploitation, marking the first time…
Neue Variante des Shai-Hulud Worm – Supply-Chain-Angriff trifft über 1.000 npm-Pakete

Nov 26, 2025 7:50 PM

Tags: cyberattack, supply-chain, update, worm

First seen on security-insider.de Jump to article: www.security-insider.de/npm-pakete-supply-chain-angriff-malware-infektion-a-7058d3a07ba5184bbd66002da6001877/
Security keys may prompt for PIN after recent updates

Nov 26, 2025 4:49 PM

Tags: microsoft, update, windows

Microsoft warned users on Tuesday that FIDO2 security keys may prompt them to enter a PIN when signing in after installing Windows updates released since the September 2025 preview update. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/microsoft/microsoft-fido2-security-keys-may-prompt-for-pin-after-recent-windows-updates/
Neue ClickFix-Kampagne nutzt Fake-Windows-Updates

Nov 26, 2025 3:50 PM

Tags: captcha, cyberattack, endpoint, group, malware, monitoring, phishing, powershell, social-engineering, update, windows

Cyberkriminelle nutzen eine gefälschte Windows-Update-Seite, um Mitarbeiter anzugreifen.Forscher des Security-Anbieters Huntress sind kürzlich auf eine neue ClickFix-Kampagne gestoßen, die auf Mitarbeiter in Unternehmen zielt. Laut Forschungsbericht haben die Angreifer ihre Malware dabei in den Pixeln eines Bildes versteckt, das eine Windows-Update-Seite vortäuscht. Dort werden die Benutzer aufgefordert, auf Ausführen zu klicken, um einen bösartigen Befehl…
Threat Actors Use Fake Update Lures to Deploy SocGholish Malware

Nov 26, 2025 2:49 PM

Tags: cyber, group, infrastructure, malware, russia, threat, update

In a significant escalation of cyber threats, Arctic Wolf Labs has identified a coordinated campaign in which the Russian-aligned RomCom threat group leverages the SocGholish malware to target a U.S.-based engineering firm with suspected ties to Ukraine. This marks the first documented instance of RomCom payloads being distributed through SocGholish’s infrastructure, signaling a dangerous convergence…
Threat Actors Use Fake Update Lures to Deploy SocGholish Malware

Nov 26, 2025 2:49 PM

Tags: cyber, group, infrastructure, malware, russia, threat, update

In a significant escalation of cyber threats, Arctic Wolf Labs has identified a coordinated campaign in which the Russian-aligned RomCom threat group leverages the SocGholish malware to target a U.S.-based engineering firm with suspected ties to Ukraine. This marks the first documented instance of RomCom payloads being distributed through SocGholish’s infrastructure, signaling a dangerous convergence…
ASUS warns of new critical auth bypass flaw in AiCloud routers

Nov 26, 2025 1:49 PM

Tags: authentication, firmware, flaw, router, update, vulnerability

ASUS has released new firmware to patch nine security vulnerabilities, including a critical authentication bypass flaw in routers with AiCloud enabled. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/asus-warns-of-new-critical-auth-bypass-flaw-in-aicloud-routers/
ASUS warns of new critical auth bypass flaw in AiCloud routers

Nov 26, 2025 1:49 PM

Tags: authentication, firmware, flaw, router, update, vulnerability

ASUS has released new firmware to patch nine security vulnerabilities, including a critical authentication bypass flaw in routers with AiCloud enabled. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/asus-warns-of-new-critical-auth-bypass-flaw-in-aicloud-routers/
Webinar: Learn to Spot Risks and Patch Safely with Community-Maintained Tools

Nov 26, 2025 12:49 PM

Tags: jobs, risk, tool, update

If you’re using community tools like Chocolatey or Winget to keep systems updated, you’re not alone. These platforms are fast, flexible, and easy to work with”, making them favorites for IT teams. But there’s a catch…The very tools that make your job easier might also be the reason your systems are at risk.These tools are…