February Patch Tuesday delivers 57 packages
After January’s deluge, a calmer update volume returns
Similar Posts
Rare Werewolf APT Uses Legitimate Software in Attacks on Hundreds of Russian Enterprises
Bys sThe threat actor known as Rare Werewolf (formerly Rare Wolf) has been linked to a series of cyber attacks targeting Russia and the Commonwealth of Independent States (CIS) countries. “A distinctive feature of this threat is that the attackers favor using legitimate third-party software over developing their own malicious binaries,” Kaspersky said. “The malicious functionality…
Threat Intelligence Executive Report – Volume 2025, Number 3
Bys sThis issue of the Counter Threat Unit’s high-level bimonthly report discusses noteworthy updates in the threat landscape during March and April
Don’t breathe that sigh of relief just yet: BreachForums is gone, but the Salesforce leak site isn’t
Bys sAs everyone expected, it was only a matter of time before the most recent version of BreachForums was seized, and last night, it happened. This time, though, there is no announcement from ShinyHunters about rebuilding the forum and making it stronger and better than ever. To the contrary, ShinyHunters says they are done with the……
This is how you do it: Dentist speaks out after practice hit by cyber attack
Bys sThis could be the smallest breach DataBreaches has reported recently, and yet we are covering it instead of other, much bigger breaches that will undoubtedly generate lots of headlines. Why? Because it represents a refreshing example of quick response and transparency. Dr. Joe McEnhill, owner of Grange Dental Care, said the breach occurred on Thursday……
Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers
Bys sCybersecurity researchers have disclosed three security flaws in the Rack Ruby web server interface that, if successfully exploited, could enable attackers to gain unauthorized access to files, inject malicious data, and tamper with logs under certain conditions. The vulnerabilities, flagged by cybersecurity vendor OPSWAT, are listed below – CVE-2025-27610 (CVSS score: 7.5) – A path…
WordPress King Addons Flaw Under Active Attack Lets Hackers Make Admin Accounts
Bys sA critical security flaw impacting a WordPress plugin known as King Addons for Elementor has come under active exploitation in the wild. The vulnerability, CVE-2025-8489 (CVSS score: 9.8), is a case of privilege escalation that allows unauthenticated attackers to grant themselves administrative privileges by simply specifying the administrator user role during registration. It affects versions