Zabbix Agent CVE-2025-27237: OpenSSL Privilege Escalation
A security vulnerability has been identified in Zabbix Agent and Agent2 for Windows, potentially allowing local users to escalate their privileges to the SYSTEM level.…
Category: DarkReading
CVE-2025-61882 Targets Oracle E-Business Suite
Oracle has issued a security alert warning users of a zero-day vulnerability in its widely used Oracle E-Business Suite. Tracked as CVE-2025-61882, this flaw allows…
Unity Vulnerability Hits Android, Windows, Linux Platforms
A recently disclosed security vulnerability in Unity has prompted security updates and, in some cases, game removals across platforms like Steam. The issue affects Unity versions…
Scattered LAPSUS$ Hunters Leak Site Lists Salesforce Victims
The Scattered LAPSUS$ Hunters threat collective has launched a new dark web data leak site to attempt to extort victims of the group’s breaches of…
Cyberattack On Shamir Medical Center Exposes Emails
On Yom Kippur, one of the holiest days in the Jewish calendar, Shamir Medical Center, also known as Assaf Harofeh Medical Center, was targeted in…
Critical Splunk Vulnerabilities Affect Multiple Versions
Splunk has disclosed six critical security vulnerabilities impacting multiple versions of both Splunk Enterprise and Splunk Cloud Platform. These Splunk vulnerabilities, collectively highlighting serious weaknesses…
Cyberattack On Asahi Halts Beer Production Across Japan
Japan’s largest brewery, Asahi Group Holdings, is racing against time as it struggles to recover from a cyberattack that has severely disrupted its operations. The…
Hackers Claim Breach Of Red Hat Customer Data
Hackers claim to have breached a Red Hat GitHub instance and stolen sensitive customer data. The claims were made in Telegram posts by a group…
FTC Sues Sendit App, CEO Over Illegal Children’s Data Collection
The Federal Trade Commission (FTC) has filed a complaint against social app Sendit and its CEO Hunter Rice, alleging that the company unlawfully harvested children’s…
VMware Vulnerability CVE-2025-41244 Exploited For A Year
A newly listed VMware zero-day vulnerability has been actively exploited by Chinese state-sponsored threat actors for almost a year, according to security researchers. The vulnerability,…
Black Hat USA 2025 CISO Podcast Series Episode 11: Out Now
Episode 11 of the Black Hat USA 2025 CISO Podcast Series takes on one of the most pressing debates in enterprise security today: Is traditional…
Apple Security Updates Fix Font Parser Vulnerability
Apple has rolled out a series of important security updates across multiple platforms, addressing a vulnerability affecting the system font parser. These Apple security updates…