WinRAR Woes: Exploited Zero-Day Bug Opens Door for RomCom Malware Mayhem WinRAR's new slogan: "Opening doors you never knew you had!" The WinRAR vulnerability, CVE-2025-8088, was exploited in phishing attacks to install RomCom malware. Upgrade to WinRAR 7.13 now, unless you like surprise startup programs.

WinRAR Woes: Exploited Zero-Day Bug Opens Door for RomCom Malware Mayhem

WinRAR vulnerability CVE-2025-8088 exploited by RomCom malware in phishing attacks. Update to WinRAR 7.13 now to avoid being an unwilling accomplice!
thenimblenerd.com?p=1052644

CVE-2025-8088 - WinRAR Windows Path Traversal RCE
CVE ID : CVE-2025-8088

Published : Aug. 8, 2025, 12:15 p.m. | 1 hour, 14 minutes ago

Description : A path traversal vulnerability affecting the Windows version of WinRAR allows the attackers to execute arbitrary code by c...

Path traversal vulnerability in WinRAR - CyberAlerts View detailed information about CVE-2025-8088 on CyberAlerts

🚨 New CISA Vulnerability Alert 🚨

HIGH: Path traversal vulnerability in WinRAR

CVE-2025-8088

You can now share your thoughts on vulnerability CVE-2025-8088 in Vulnerability-Lookup:
https://vulnerability.circl.lu/vuln/CVE-2025-8088

win.rar GmbH - WinRAR

#VulnerabilityLookup #Vulnerability #Cybersecurity #bot

CVE-2025-8730 - Belkin Web Interface Hard-Coded Credentials Remote Vulnerability
CVE ID : CVE-2025-8730

Published : Aug. 8, 2025, 3:15 p.m. | 24 minutes ago

Description : A vulnerability was found in Belkin F9K1009 and F9K1010 2.00.04/2.00.09 and classified as critical. ...

You can now share your thoughts on vulnerability CVE-2025-8730 in Vulnerability-Lookup:
https://vulnerability.circl.lu/vuln/CVE-2025-8730

Belkin - F9K1009

#VulnerabilityLookup #Vulnerability #Cybersecurity #bot

Federal court filing system hit in sweeping hack The identities of confidential court informants are feared compromised in a series of breaches across multiple U.S. states.

NEW: "The electronic case filing system used by the federal judiciary has been breached in a sweeping cyber intrusion that is believed to have exposed sensitive court data across multiple U.S. states, according to two people with knowledge of the incident."

Flaws Expose 100 Dell Laptop Models to Implants, Windows Login Bypass ReVault vulnerabilities in the ControlVault3 firmware in Dell laptops could lead to firmware modifications or Windows login bypass.

The issues, tracked as CVE-2025-24311, CVE-2025-25215, CVE-2025-24922, CVE-2025-25050, and CVE-2025-24919, were initially disclosed on June 13, when Dell announced that patches for them were rolled out for over 100 Dell Pro, Latitude, and Precision models. www.securityweek.com/flaws-expose...

YouTube video by BSidesLV BsidesLV 2025 - Breaking Ground - Monday

My BSidesLV keynote is here. It touches on several difficult topics in our industry. Topics best discussed in person. As our industry spends this week in Vegas, please share this talk with your peers and discuss in person.

www.youtube.com/watch?v=4CD9...

Zscaler users: CVE-2025-54982 is a SAML signature bypass (CVSS 9.6) that undermines your SSO safeguards. Stay on top of the upcoming patch and lock it down fast! More ➡️ basefortify.eu/cve_reports/... #cybersecurity

CVE-2025-54982 - Zscaler SAML Authentication Signature Forgery
CVE ID : CVE-2025-54982

Published : Aug. 5, 2025, 6:15 a.m. | 17 minutes ago

Description : An improper verification of cryptographic signature in Zscaler's SAML authentication mechanism on the server-side all...

You can now share your thoughts on vulnerability CVE-2025-54982 in Vulnerability-Lookup:
https://vulnerability.circl.lu/vuln/CVE-2025-54982

Zscaler - Authentication Server

#VulnerabilityLookup #Vulnerability #Cybersecurity #bot

Security threat visualization

CRITICAL: CVE-2025-54982 in Zscaler Authentication Server allows SAML signature bypass—authentication can be abused. No fix yet, monitor for guidance. https://radar.offseq.com/threat/cve-2025-54982-cwe-347-improper-verification-of-cr-e9f16fd5 #OffSeq #Zscaler #Vulnerability

~Zscaler~
Raspberry Robin malware evolves with a new LPE exploit (CVE-2024-38196), ChaCha-20 encryption, and stronger obfuscation.
-
IOCs: CVE-2024-38196
-
#CVE202438196 #Malware #RaspberryRobin #ThreatIntel

Spotlight on MacOS Flaw: How Hackers Could Have Bypassed Apple’s TCC Protections! Microsoft shines a light on Sploitlight, a macOS vulnerability that bypassed Apple's TCC protections. This flaw turned Spotlight plugins into unwitting spies, leaking sensitive data. Thankfully, Apple's macOS Sequoia 15.4 update dimmed Sploitlight's mischief.

Spotlight on MacOS Flaw: How Hackers Could Have Bypassed Apple’s TCC Protections!

macOS vulnerability CVE-2025-31199 lets attackers bypass TCC protections, accessing sensitive data. Fixed in March 2025, but not before Sploitlight's spotlight!
thenimblenerd.com?p=1051630

Microsoft and Apple Released Fix for CVE-2025-31199 Vulnerability

Microsoft Threat Intelligence Discovers a macOS Vulnerability, CVE-2025-31199, That Could Enable Attackers To Steal Private Files

MICROSOFT THREAT INTELLIGENCE: MACOS VULNERABILITY CVE-2025-31199 COULD EXPOSE PRIVATE FILE DATA TO ATTACKERS Microsoft has discovered a macOS security flaw — CVE-2025-31199 — that could allow malicious actors to steal private file data from targeted systems.

You can now share your thoughts on vulnerability CVE-2025-43253 in Vulnerability-Lookup:
https://vulnerability.circl.lu/vuln/CVE-2025-43253

Apple - macOS

#VulnerabilityLookup #Vulnerability #Cybersecurity #bot

You can now share your thoughts on vulnerability CVE-2025-43266 in Vulnerability-Lookup:
https://vulnerability.circl.lu/vuln/CVE-2025-43266

Apple - macOS

#VulnerabilityLookup #Vulnerability #Cybersecurity #bot

You can now share your thoughts on vulnerability CVE-2025-31199 in Vulnerability-Lookup:
https://vulnerability.circl.lu/vuln/CVE-2025-31199

Apple - iOS and iPadOS

#VulnerabilityLookup #Vulnerability #Cybersecurity #bot

CVE-2025-31199 - "Apple iOS/iPadOS/visualOS/macOS Sequoia Sensitive Data Disclosure"
CVE ID : CVE-2025-31199

Published : May 29, 2025, 10:15 p.m. | 1 hour, 41 minutes ago

Description : A logging issue was addressed with improved data redaction. This issue is fixed in iOS...

‘tis a different vuln - CVE-2025-6543

GitHub - NCSC-NL/citrix-2025 Contribute to NCSC-NL/citrix-2025 development by creating an account on GitHub.

The Dutch cybersecurity agency has released a script to detect webshells typically installed by attackers exploiting the CitrixBleed2 vulnerability in Citrix NetScaler appliances

github.com/NCSC-NL/citr...

Critical Flaw in NVIDIA AI Toolkit Puts Cloud Services at Risk – Upgrade Immediately

A critical flaw in NVIDIA's AI container toolkit (CVE-2025-23266) allows full host takeover, posing serious risks to cloud-based AI services.

Critical flaw in NVIDIA Container Toolkit (CVE-2025-23266) allows privilege escalation in AI cloud services. Update to versions 1.17.8 and 25.3.1 immediately. #CyberSecurity #AI #NVIDIA #CloudSecurity Link: thedailytechfeed.com/critical-vul...

CVE-2025-23267：A vulnerability in NVIDIA Container Toolkit can lead to container escape.


www.openwall.com ->

Looking at this and CVE-2025-23266 makes me wonder: was NVIDIA's GPU sandbox vibe-coded?

#VibeCoding #AI #YOLO


Original->

Great research out of Wiz!

At @edera.dev we think a lot about how to prevent vulns like this one.

Our hardened runtime technology would have completely prevented CVE-2025-23266 by eliminating the shared kernel state that makes this container escape possible. See how: edera.dev/stories/how-...

Critical NVIDIA Container Toolkit Flaw Allows Privilege Escalation on AI Cloud Services Critical NVIDIA vulnerability CVE-2025-23266 impacts 37% of cloud services, allowing privilege escalation and data tampering.

The vulnerability, tracked as CVE-2025-23266, carries a CVSS score of 9.0 out of 10.0. It has been codenamed NVIDIAScape by Google-owned cloud security company Wiz. thehackernews.com/2025/07/crit...

「Livewire」にRCE脆弱性 - すみやかにアップデートを

「Laravel」の機能を拡張するウェブ開発フレームワーク「Livewire 3」にリモートよりコマンドの実行が可能となる脆弱性が明らかとなった。アップデートが推奨されている。

「同3.6.3」および以前のバージョンにおいて、特定条件下で認証なしにリモートより任意のコマンドが実行できる脆弱性「CVE-2025-54068」が明らかとなったもの。

プロパティ更新にともなう内部処理の不備により生じる脆弱性で、対象のコンポーネントがマウントされている場合に影響を受ける。