Russia-linked hackers are back at it again, this time with upgraded tools and a stealthier playbook targeting Ukrainian government systems.…
Security
Cybersecurity researchers have uncovered a Go-based malware called XDigo that has been used in attacks targeting Eastern European governmental entities…
Canadese overheid meldt aanval op telecombedrijf via bekend Cisco-lek
Een Canadees telecombedrijf is afgelopen februari gecompromitteerd via een bekende kwetsbaarheid in Cisco IOS XE waarvoor sinds oktober 2023 beveiligingsupdates beschikbaar zijn. Al voor het uitkomen …
Read more
Published Date:
Jun 23, 2025 (3 hours, 25 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2023-20198
CoinMarketCap Hacked: “Doodle” Graphic Delivers Malware, Stealing $43K+ from User Wallets
On June 20, 2025, CoinMarketCap (CMC)—a trusted name in the crypto ecosystem—fell victim to a highly coordinated client-side attack that weaponized a seemingly harmless “doodle” graphic to deliver mal …
Read more
Published Date:
Jun 23, 2025 (2 hours, 3 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2024-53677
People’s Republic of China cyber threat activity: Cyber Threat Bulletin
From the Canadian Centre for Cyber Security:
The Canadian Centre for Cyber Security (Cyber Centre) and the United States’ Federal Bureau of Investigation (FBI) are warning
Canadians of the threat pose …
Read more
Published Date:
Jun 23, 2025 (31 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2023-20198
CVE ID : CVE-2025-52926
Published : June 23, 2025, 1:15 a.m. | 5 hours, 29 minutes ago
Description : In scan.rs in spytrap-adb before 0.3.5, matches for known stalkerware are not rendered in the interactive user interface.
Severity: 2.7 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6497
Published : June 23, 2025, 1:15 a.m. | 5 hours, 29 minutes ago
Description : A vulnerability was found in HTACG tidy-html5 5.8.0. It has been rated as problematic. This issue affects the function prvTidyParseNamespace of the file src/parser.c. The manipulation leads to reachable assertion. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6498
Published : June 23, 2025, 2:15 a.m. | 4 hours, 29 minutes ago
Description : A vulnerability classified as problematic has been found in HTACG tidy-html5 5.8.0. Affected is the function defaultAlloc of the file src/alloc.c. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6499
Published : June 23, 2025, 3:15 a.m. | 3 hours, 29 minutes ago
Description : A vulnerability classified as problematic was found in vstakhov libucl up to 0.9.2. Affected by this vulnerability is the function ucl_parse_multiline_string of the file src/ucl_parser.c. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6500
Published : June 23, 2025, 3:15 a.m. | 3 hours, 29 minutes ago
Description : A vulnerability, which was classified as critical, has been found in code-projects Inventory Management System 1.0. Affected by this issue is some unknown functionality of the file /php_action/editCategories.php. The manipulation of the argument editCategoriesName leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6501
Published : June 23, 2025, 3:15 a.m. | 3 hours, 29 minutes ago
Description : A vulnerability, which was classified as critical, was found in code-projects Inventory Management System 1.0. This affects an unknown part of the file /php_action/createCategories.php. The manipulation of the argument categoriesStatus leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6502
Published : June 23, 2025, 4:15 a.m. | 2 hours, 29 minutes ago
Description : A vulnerability has been found in code-projects Inventory Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /php_action/changePassword.php. The manipulation of the argument user_id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-6503
Published : June 23, 2025, 4:15 a.m. | 2 hours, 29 minutes ago
Description : A vulnerability was found in code-projects Inventory Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /php_action/fetchSelectedCategories.php. The manipulation of the argument categoriesId leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
WordPress Motors theme flaw mass-exploited to hijack admin accounts
Hackers are exploiting a critical privilege escalation vulnerability in the WordPress theme “Motors” to hijack administrator accounts and gain complete control of a targeted site.
The malicious activi …
Read more
Published Date:
Jun 21, 2025 (1 day, 12 hours ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-4322
Weekly Cybersecurity News Recap – Top Vulnerabilities, Threat and Data Breaches
In our fast-paced, interconnected world, the dangers of cyberattacks are becoming more frequent and complex. That’s why it’s more important than ever to stay updated and aware of the risks. Every week …
Read more
Published Date:
Jun 22, 2025 (11 hours, 50 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-50054
CVE-2025-32896
CVE-2025-5777
CVE-2025-5349
CVE-2025-5419
CVE-2025-4664
CVE-2024-1086
Shadow Vector: Malicious SVGs Deliver AsyncRAT & RemcosRAT in Colombian Phishing Campaign!
The Acronis Threat Research Unit (TRU) has uncovered a stealthy and technically mature malware campaign dubbed Shadow Vector, targeting victims in Colombia. What sets this campaign apart is its use of …
Read more
Published Date:
Jun 23, 2025 (2 hours, 40 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2022-42045
CVE-2023-1486
RapperBot Resurfaces: 50,000+ Bots Demand Monero Extortion in New DDoS Campaigns
A botnet called RapperBot blends technical evolution with internet-era bravado to launch attacks on over 50,000 devices worldwide.
In a world where most malware remains silent, RapperBot screams for a …
Read more
Published Date:
Jun 23, 2025 (2 hours, 33 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2023-4473
CVE-2021-46229
CVE-2020-24581
CVE-2020-9054
NCSC Uncovers “UMBRELLA STAND” Malware: Stealthy Backdoor Targets Fortinet FortiGate Firewalls
A new malware campaign dubbed UMBRELLA STAND has been uncovered by the UK’s National Cyber Security Centre (NCSC), revealing an intricate framework targeting Fortinet FortiGate 100D firewalls through …
Read more
Published Date:
Jun 23, 2025 (2 hours, 24 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2024-12209
Critical Meshtastic Flaw: Key Duplication Allows Message Decryption & Node Hijacking
The developers behind Meshtastic, the popular open-source LoRa mesh networking project, have issued a critical security advisory disclosing a cryptographic flaw that may allow attackers to decrypt pri …
Read more
Published Date:
Jun 23, 2025 (2 hours, 16 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-52464
CVE-2025-24797
Former US Army Sergeant pleads guilty after amateurish attempt at selling secrets to China
Infosec in brief A former US Army sergeant has admitted he attempted to sell classified data to China.
Joseph Daniel Schmidt last Friday pled guilty after the Feds charged him with using his top secre …
Read more
Published Date:
Jun 23, 2025 (2 hours, 13 minutes ago)
Vulnerabilities has been mentioned in this article.
CVE-2025-5777
CVE-2025-5349
CVE-2025-6170
CVE-2025-49796
CVE-2025-49795
CVE-2025-49794
CVE-2025-6021
CVE-2023-33538