Security news.
Today's security landscape is marked by a flurry of critical patches and actively exploited zero-days, underscoring the relentless pace of cyber threats. Microsoft, SonicWall, and other vendors have rushed to release updates for severe vulnerabilities, some of which are already under attack. Meanwhile, new research highlights sophisticated techniques for malware evasion and supply chain compromise, demanding heightened vigilance from developers and IT teams.
Researcher Drops New Windows Zero-Day PoC Hours After Microsoft Patch Tuesday
A security researcher released a proof-of-concept (PoC) exploit, LegacyHive, for a Windows User Profile Service arbitrary hive load elevation of privileges vulnerability shortly after Microsoft's record-setting Patch Tuesday.
Windows Bind Link Attacks Can Hide Malware From EDR Tools
Bitdefender researchers have demonstrated how Windows bind links can create conflicting filesystem views, allowing malware to evade detection by endpoint security products.
2-Click Cursor Exploit Enables Dev Environment Takeover
Simple, age-old bugs in the Cursor IDE could allow attackers to gain access to developers' secrets and source code-rich environments with just two clicks.
Vulnerabilities Patched by Fortinet, Ivanti, ServiceNow
Fortinet, Ivanti, and ServiceNow have released patches, including a critical flaw in the ServiceNow AI platform that could enable remote code execution.
Progress Confirms Zero-Day Vulnerability Behind ShareFile Disruption
Progress Software has confirmed a zero-day vulnerability as the cause of ShareFile Storage Zones Controller disruptions and has released a fix.
US Charges Russian Individuals and Firms for Running Cybercrime Services
The U.S. has filed charges against Russian individuals and firms for operating cybercrime services, some of whom were previously sanctioned for similar activities.
Compromised AsyncAPI npm Packages Deliver Multi-Stage Botnet Malware
Four npm packages in the @asyncapi namespace have been found distributing multi-stage botnet loader malware, as reported by multiple security firms.
Critical Vulnerabilities Patched With Fresh Chrome 150, Firefox 152 Updates
Google and Mozilla have released updates for Chrome 150 and Firefox 152, respectively, addressing critical vulnerabilities, with public exploit code existing for the Firefox flaws.