News

7-Zip Vulnerability Lets Hackers Write Files and Run Malicious Code

Bys s August 11, 2025

Divya reports: A security vulnerability has been discovered in the popular 7-Zip file compression utility that could allow attackers to write arbitrary files to victim systems and potentially execute malicious code. The flaw, tracked as CVE-2025-55188, affects all versions of 7-Zip prior to the recently released version 25.01 and stems from improper handling of symbolic links…

Source

News

House Lawmakers Push to Ban AI App DeepSeek From US Government Devices
Bys s February 6, 2025

A bipartisan duo in the the U.S. House is proposing legislation to ban the Chinese artificial intelligence app DeepSeek from federal devices. The post House Lawmakers Push to Ban AI App DeepSeek From US Government Devices appeared first on SecurityWeek.

Read More House Lawmakers Push to Ban AI App DeepSeek From US Government Devices
News

October Patch Tuesday beats January ’25 record
Bys s October 15, 2025

Microsoft throws a farewell party for Win10, Office 2016, and Office 2019… a very big party

Read More October Patch Tuesday beats January ’25 record
News

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks
Bys s August 21, 2025

Apple has released security updates to address a security flaw impacting iOS, iPadOS, and macOS that it said has come under active exploitation in the wild. The zero-day out-of-bounds write vulnerability, tracked as CVE-2025-43300, resides in the ImageIO framework that could result in memory corruption when processing a malicious image. “Apple is aware of a…

Read More Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks
News

GitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover Attacks
Bys s March 13, 2025

Two high-severity security flaws have been disclosed in the open-source ruby-saml library that could allow malicious actors to bypass Security Assertion Markup Language (SAML) authentication protections. SAML is an XML-based markup language and open-standard used for exchanging authentication and authorization data between parties, enabling features like single sign-on (SSO), which allows

Read More GitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover Attacks
News

Ontario health agency atHome ordered to inform 200,000 patients of March data breach
Bys s June 30, 2025

Isaac Callan and Colin D’Mello report that Ontario’s health minister is ordering atHome, a provincial agency, to immediately notify approximately 200,000 patients whose data may have been breached in a vendor’s cyberattack in March. There appears to have been a breakdown in what should have happened, as the Health Minister reported that atHome had failed…

Read More Ontario health agency atHome ordered to inform 200,000 patients of March data breach
News

Silver Fox APT Uses Winos 4.0 Malware in Cyber Attacks Against Taiwanese Organizations
Bys s February 27, 2025

A new campaign is targeting companies in Taiwan with malware known as Winos 4.0 as part of phishing emails masquerading as the country’s National Taxation Bureau. The campaign, detected last month by Fortinet FortiGuard Labs, marks a departure from previous attack chains that have leveraged malicious game-related applications. “The sender claimed that the malicious file…

Read More Silver Fox APT Uses Winos 4.0 Malware in Cyber Attacks Against Taiwanese Organizations

Similar Posts